The wikifaces package in PyPI v1.0 included a code execution backdoor inserted by a third party.
References
Link | Resource |
---|---|
http://pypi.doubanio.com/simple/request | Not Applicable |
https://github.com/tford9/Wiki-Faces-Downloader/issues/1 | Third Party Advisory |
https://pypi.org/project/wikifaces/ | Product |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-07-22T14:17:44
Updated: 2022-07-22T14:17:38
Reserved: 2022-06-26T00:00:00
Link: CVE-2022-34509
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-07-22T15:15:08.787
Modified: 2022-07-29T03:11:12.103
Link: CVE-2022-34509
JSON object: View
Redhat Information
No data.
CWE