Remote Code Execution Backdoor

2022-07-2511:57:45

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.002 Low

EPSS

Percentile

65.0%

JSON

wikifaces is vulnerable to a remote code execution backdoor. The use of the package opens up a code execution backdoor, allowing a remote attacker to perform unauthorized actions via injecting malicious inputs through the backdoor.

CPENameOperatorVersion
wikifaceseq1.0.0
wikifaceseq1.0.0

CPE	Name	Operator	Version
	wikifaces	eq	1.0.0
	wikifaces	eq	1.0.0

References

pypi.doubanio.com/simple/request

github.com/tford9/Wiki-Faces-Downloader/issues/1

pypi.org/project/wikifaces/

0.002 Low

EPSS

Percentile

65.0%

JSON

Related for VERACODE:36478