19 matches found
[SECURITY] Fedora 44 Update: python-biopython-1.87-1.fc44
A set of freely available Python tools for computational molecular biology...
PraisonAI has sandbox escape via exception frame traversal in `execute_code` (subprocess mode)
Summary executecode in praisonaiagents.tools.pythontools defaults to sandboxmode="sandbox", which runs user code in a subprocess wrapped with a restricted builtins dict and an AST-based blocklist. The AST blocklist embedded inside the subprocess wrapper blockedattrs, line 143 of pythontools.py...
Ethical-Hacking-Tools-Level2
🛡️ Cybersecurity & Python Portfolio - Level 2 Author: Pa...
[SECURITY] Fedora 43 Update: python-biopython-1.86-2.fc43
A set of freely available Python tools for computational molecular biology...
x86-exploitation-lab
It is an offensive tool for x86 exploitation. This repository co...
SVG Security Analysis Toolkit
SVG Security Analysis Toolkit contains specialized Python tools for analyzing potentially malicious SVG files and detecting security mechanisms...
CTFDefense
This repository, CTFDefense, contains tools for offline CTF Capture The Flag challenges. The tools are written in Python and are designed to monitor and analyze system events. The repository includes a script called SimpleMonitor.py, which uses the pyinotify library to watch for file system event...
Banana Squad Hides Data-Stealing Malware in Fake GitHub Repositories
Banana Squad hid data-stealing malware in fake GitHub repos posing as Python tools, tricking users and targeting sensitive info like browser and wallet data...
MGASA-2025-0054 Updated python-twisted packages fix security vulnerabilities
Twisted.web has disordered HTTP pipeline response. CVE-2023-46137 Twisted.web has disordered HTTP pipeline response. CVE-2024-41671 HTML injection in HTTP redirect body. CVE-2024-41810...
Malicious code in web3-py-tools (PyPI)
--- -= Per source details. Do not edit below this line.=-...
pcp security update
5.3.7-22.0.1 - pcp-zoneinfo fix to replay ol7 archives Orabug: 35903733 - Backporting of python tool pcp-meminfo Orabug: 35759707 - Backporting of python tool pcp-slabinfo Orabug: 35560940 - Backporting of python tool pcp-buddyinfo Orabug: 35660932 - Backporting of python tool pcp-netstat Orabug:...
Poc
This repository contains a collection of proof-of-concept PoC exploits and tools for various vulnerabilities. The primary focus is on Java-based exploits, with some Python scripts also present. The Java exploits target vulnerabilities in Java applications, including a deserialization vulnerabilit...
VMCONNECT: Malicious PyPI Package Mimicking Common Python Tools
By Deeba Ahmed Threat researchers at ReversingLabs, a software supply chain security and malware analysis platform, have discovered a malicious new PyPI… This is a post from HackRead.com Read the original post: VMCONNECT: Malicious PyPI Package Mimicking Common Python Tools...
vulhub21
This repository is an offensive tool for vulnerability research and exploitation. It contains a collection of vulnerable environments and exploits for various software and systems. The primary purpose of this repository is to provide a platform for researchers and security professionals to learn...
Code Injection in c0oki3s/python-tools
✍️ Description python-tools is using an unsecure input function in https://github.com/C0oki3s/python-tools/blob/main/Dircreate/Dircreate.pyL8. Given that the script can be run using python2 or python3, if you feed the program with a python command and the python interpreter is python2, then the...
Security Updates for Microsoft Visual Studio Products (November 2020)
The Microsoft Visual Studio Products are missing security updates. They are, therefore, affected by a tampering vulnerability. The vulnerability exists when the Python Tools for Visual Studio creates the python27 folder. An attacker who successfully exploited this vulnerability could run processe...
CiscoExploit
This is a collection of three separate tools for exploiting vulnerabilities in Cisco devices. The tools are: 1. CiscoRV320Dump-master: This tool is designed to dump the configuration of a Cisco RV320 router. It includes a script called dumpconfig.py that extracts the configuration from the router...
CentOS Security Advisory CESA-2009:1176 (python)
The remote host is missing updates to python announced in advisory CESA-2009:1176. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-on...
python, tkinter security update
CentOS Errata and Security Advisory CESA-2009:1176 Updated python packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Python is an interpreted, interactive...