Product

Jsonpickle 2.0.0

1 brief RSS

jsonpickle 2.0.0 Remote Code Execution via Deserialization of Malicious Payloads

jsonpickle version 2.0.0 contains a remote code execution vulnerability, allowing attackers to execute arbitrary Python commands by deserializing malicious JSON payloads containing py/repr objects, which invoke the eval function.

jsonpickle 2.0.0 deserialization remote code execution cve-2021-47952

2r 1t 1c 7m ago