Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:33 a.m.11 views

CVE-2024-39205

An issue in pyload-ng v0.5.0b3.dev85 running under python3.11 or below allows attackers to execute arbitrary code via a crafted HTTP request...

9.8CVSS7.6AI score0.16513EPSS
Exploits4References1
Packet Storm
Packet Storm
added 2024/11/18 12:0 a.m.385 views

Pyload Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'rex/stopwatch' class MetasploitModule 'Pyload RCE CVE-2024-39205 with js2py sandbox escape CVE-2024-28397', 'Description' = %q CVE-2024-28397 is sandbox escape ...

9.8CVSS7AI score0.16513EPSS
Exploits22
0day.today
0day.today
added 2024/11/18 12:0 a.m.808 views

Pyload Remote Code Execution Exploit

CVE-2024-28397 is a sandbox escape in js2py versions 0.74 and below. js2py is a popular python package that can evaluate javascript code inside a python interpreter. The vulnerability allows for an attacker to obtain a reference to a python object in the js2py environment enabling them to escape...

9.8CVSS6.8AI score0.16513EPSS
Exploits22
Metasploit
Metasploit
added 2024/11/15 6:53 p.m.1986 views

Pyload RCE (CVE-2024-39205) with js2py sandbox escape (CVE-2024-28397)

CVE-2024-28397 is sandbox escape in js2py use exploit/linux/http/pyloadjs2pycve202439205 msf exploitpyloadjs2pycve202439205 show targets ...targets... msf exploitpyloadjs2pycve202439205 set TARGET msf exploitpyloadjs2pycve202439205 show options ...show and set options... msf...

9.8CVSS7.7AI score0.16513EPSS
Exploits22
Circl
Circl
added 2024/09/09 2:35 a.m.18 views

CVE-2024-39205

creationtimestamp| type| source ---|---|--- 2024-09-09 02:35:15+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/8488 2024-10-26 01:04:05+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/8843 2024-10-27 12:18:42+00:00| published-proof-of-concept|...

9.8CVSS7.3AI score0.16513EPSS
Exploits4References17
Rows per page
Query Builder