The vulnerability of the js2py.disable_pyimport() function in the js2py library allows a hacker to bypass the sandbox protection and execute arbitrary code.

The vulnerability of the js2py.disablepyimport function in the js2py library is related to improper code generation management. Exploiting this vulnerability could allow a remote attacker to bypass the sandbox’s security mechanisms and execute arbitrary code by sending specially crafted API calls...