CVE-2023-0297
CVSS V2 None
CVSS V3 None
Description
Code Injection in GitHub repository pyload/pyload prior to 0.5.0b3.dev31.
Overview
- CVE ID
- CVE-2023-0297
- Assigner
- security@huntr.dev
- Vulnerability Status
- Modified
- Published Version
- 2023-01-14T03:15:18
- Last Modified Date
- 2023-02-22T19:15:10
Weakness Enumerations
CPE Configuration (Product)
CPE | Vulnerable | Operator | Version Start | Version End |
---|---|---|---|---|
cpe:2.3:a:pyload:pyload:*:*:*:*:*:*:*:* | 1 | OR | 0.4.20 |
References
Reference URL | Reference Tags |
---|---|
http://packetstormsecurity.com/files/171096/pyLoad-js2py-Python-Execution.html | |
https://github.com/pyload/pyload/commit/7d73ba7919e594d783b3411d7ddb87885aea782d | Patch Third Party Advisory |
https://huntr.dev/bounties/3fd606f7-83e1-4265-b083-2e1889a05e65 | Exploit Third Party Advisory |
Sources
Source Name | Source URL |
---|---|
NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-0297 |
MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0297 |
History
Created | Old Value | New Value | Data Type | Notes |
---|---|---|---|---|
2023-01-14 04:15:21 | Added to TrackCVE | |||
2023-01-14 04:15:22 | Weakness Enumeration | new | ||
2023-01-17 14:14:53 | 2023-01-17T13:24:51 | CVE Modified Date | updated | |
2023-01-17 14:14:53 | Received | Awaiting Analysis | Vulnerability Status | updated |
2023-01-17 14:14:57 | CVSS V3 information | new | ||
2023-01-20 15:14:51 | Awaiting Analysis | Undergoing Analysis | Vulnerability Status | updated |
2023-01-20 15:14:54 | CVSS V3 information | new | ||
2023-01-25 20:13:42 | 2023-01-25T18:43:31 | CVE Modified Date | updated | |
2023-01-25 20:13:42 | Undergoing Analysis | Analyzed | Vulnerability Status | updated |
2023-01-25 20:13:44 | CPE Information | updated | ||
2023-01-25 20:13:44 | CVSS V3 information | new | ||
2023-02-22 20:14:09 | 2023-02-22T19:15:10 | CVE Modified Date | updated | |
2023-02-22 20:14:09 | Analyzed | Modified | Vulnerability Status | updated |
2023-02-22 20:14:10 | References | updated | ||
2023-02-22 20:14:10 | CVSS V3 information | new |