Marven11/CVE-2024-28397-js2py-Sandbox-Escape

Marven11/CVE-2024-28397-js2py-Sandbox-Escape

GitHubGitHub
GitHubgithub.com
Releases0
Stars29
CVE-2024-28397: js2py sandbox escape, bypass pyimport restriction.
Log in to subscribe

CVE History

CVEPublishedCVSS v3CVSS v2
CVE-2024-28397
5.3 MEDIUM

An issue in the component js2py.disable_pyimport() of js2py up to v0.74 allows attackers to execute arbitrary code via a crafted API call.