cve/CVE-2022-40897.md at 48a00929accbe24477052d164512463a2824377a

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-30 02:00:45 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

Python Packaging Authority (PyPA) setuptools before 65.5.1 allows remote attackers to cause a denial of service via HTML in a crafted package or custom PackageIndex page. There is a Regular Expression Denial of Service (ReDoS) in package_index.py.

POC

Reference

https://pyup.io/posts/pyup-discovers-redos-vulnerabilities-in-top-python-packages/

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/Fred090821/devops
https://github.com/Fred090821/devopsdocker
https://github.com/GitHubForSnap/matrix-commander-gael
https://github.com/SenhorDosSonhos1/projeto-voluntario-lacrei
https://github.com/Viselabs/zammad-google-cloud-docker
https://github.com/efrei-ADDA84/20200511
https://github.com/fredrkl/trivy-demo
https://github.com/jbugeja/test-repo
https://github.com/mansi1811-s/samp
https://github.com/seal-community/patches

1.2 KiB Raw Blame History

CVE-2022-40897

Description

POC

Reference

Github

1.2 KiB

Raw Blame History