Gallopsled/pwntools

Releases125

Frequency1 month 6 days

Last Release 8 months ago

Stars13.5K

CTF framework and exploit development library

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2020-28468 ↗	Jan 8, 2021Friday, 8 January 2021, 12:15	8.1 HIGH	7.5 HIGH
This affects the package pwntools before 4.3.1. The shellcraft generator for affected versions of this module are vulnerable to Server-Side Template Injection (SSTI), which can lead to remote code execution.