An issue in animal-art-lab v13.6.1 allows malicious users to send crafted notifications via leakage of the channel access token.
linecorp line 13.6.1