CVE-2026-7246

Published
View on NVD ↗
CVSS v3
7.2
HIGH
CVSS v2
N/A
Affected
2
PROJECTS

Description

Pallets Click, versions 8.3.2 and below, contain a command injection vulnerability in the click.edit() function, allowing attackers to pass arbitrary OS commands from an unprivileged account.

pallets/click
pallets/click
Python composable command line interface toolkit
GitHubGitHub
17.5K
tsigouris007/security-advisories
tsigouris007/security-advisories
This is a generic repository for security advisories
GitHubGitHub