InfCode's terminal auto-execution module contains a critical command filtering vulnerability that completely bypasses its blacklist security mechanism. The vulnerability stems from an incomplete blocklist that fails to cover Windows PowerShell commands and a matching algorithm that cannot parse dynamic shell syntax including string concatenation, variable assignment, and quote interpolation. Attackers can exploit this by using simple syntax obfuscation to bypass command interception. When users import and view malicious files in the IDE, the system executes dangerous PowerShell commands without user confirmation, leading to arbitrary command execution and potential sensitive data leakage.