prasmussen/glot-code-runner

Releases2

Frequency4 months 2 weeks

Last Release about 9 years ago

Stars117

Code runner

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2018-15747 ↗	Jun 21, 2019Friday, 21 June 2019, 14:15	—	7.5 HIGH
The default configuration of glot-www through 2018-05-19 allows remote attackers to execute arbitrary code because glot-code-runner supports os.system within a "python" "files" "content" JSON file.