Remote Code Execution (RCE)
psiturk is vulnerable to Remote Code Execution. The vulnerability exists in experiment.py due to the improper sanitization of special elements used as the template engine, which allows a remote attacker to inject and execute arbitrary Python commands...