9.7 High
AI Score
Confidence
High
0.006 Low
EPSS
Percentile
77.8%
Uncontrolled deserialization of a pickled object in models.py in Frost Ming rediswrapper (aka Redis Wrapper) before 0.3.0 allows attackers to execute arbitrary scripts.
github.com/frostming/rediswrapper/compare/v0.2.1...v0.3.0
github.com/frostming/rediswrapper/pull/1
github.com/frostming/rediswrapper/releases/tag/v0.3.0