Lucene search
K

4 matches found

Packet Storm News
Packet Storm News
added 2026/05/14 12:0 a.m.11 views

PickleFuzzer: A Case Study in Fuzzing for Discrepancies between Python Pickle Implementations

Python's native serialization protocol, pickle, is a powerful but insecure format for transferring untrusted data. It is frequently used, especially for saving machine learning models, despite known security challenges. While developers sometimes mitigate this risk by restricting imports during...

5.9AI score
Exploits0
CNVD
CNVD
added 2024/06/24 12:0 a.m.5 views

Js2Py Code Execution Vulnerability

Js2Py is a library from the Python Foundation. It is used to convert JavaScript to Python code. A code execution vulnerability exists in Js2Py version 0.74 and earlier, which can be exploited by an attacker to execute arbitrary code via a crafted API call...

5.3CVSS7.5AI score0.04548EPSS
Exploits22References1
CNNVD
CNNVD
added 2022/06/08 12:0 a.m.3 views

keep 安全漏洞

keep is a Meta CLI toolkit from the Python Foundation. A security vulnerability exists in keep version 1.2, which stems from the installation of request packages when installing the keep package, and is exploited by an attacker to leave a malicious backdoor on a victimized machine...

9.8CVSS8.3AI score0.02344EPSS
Exploits1References4
CNNVD
CNNVD
added 2022/06/08 12:0 a.m.2 views

pyanxdns 安全漏洞

pyanxdns is a Python package on PyPI from the Python Foundation. It is used for Python clients to communicate with the ANX DNS API. A security vulnerability exists in pyanxdns version 0.2, which stems from the installation of the request package when installing the pyanxdns package, and can be...

9.8CVSS8.6AI score0.022EPSS
Exploits1References4
Rows per page
Query Builder