2 matches found
PYSEC-2021-72
This affects the package pwntools before 4.3.1. The shellcraft generator for affected versions of this module are vulnerable to Server-Side Template Injection SSTI, which can lead to remote code execution...
Improper Control of Generation of Code ('Code Injection')
Overview pwntools is a CTF framework and exploit development library. Written in Python, it is designed for rapid prototyping and development, and intended to make exploit writing as simple as possible. Affected versions of this package are vulnerable to Improper Control of Generation of Code 'Co...