2 matches found
EUVD-2025-6166
Malicious code in bioql PyPI...
Arbitrary File Upload
Overview Affected versions of this package are vulnerable to Arbitrary File Upload via the mediapool/media page. An attacker can execute malicious code and potentially distribute malware by uploading a file with a modified filename and content-type to masquerade as a benign file type, then tricki...