Public
- Public
- Network
- Groups
- Featured
- Popular
- People

Conversation

Notices

Embed this notice
Dan Ramos :verified: (dan_ramos@noagendasocial.com)'s status on Saturday, 12-Aug-2023 19:11:20 JST Dan Ramos :verified:

🚨 Critical Python URL parsing flaw (CVE-2023-24329) discovered! Allows domain filter bypass, enabling file reads & command execution.
Find details here: https://thehackernews.com/2023/08/new-python-url-parsing-flaw-enables.html
#cybersecurity #hacking #programming #DevOps
In conversation about a year ago from noagendasocial.com permalink
Attachments
1. Domain not in remote thumbnail source whitelist: thehackernews.com
  
  New Python URL Parsing Flaw Enables Command Injection Attacks
  
  from https://www.facebook.com/thehackernews
  
  Critical Python URL parsing flaw (CVE-2023-24329) discovered! Allows domain filter bypass, enabling file reads & command execution.
- Embed this notice
  mk (mk@mastodon.satoshishop.de)'s status on Saturday, 12-Aug-2023 19:14:25 JST mk
  in reply to
  
  @Dan_Ramos
  upgrade you python to new new version.
  It has been addressed in the following versions:
  >= 3.12
  3.11.x >= 3.11.4
  3.10.x >= 3.10.12
  3.9.x >= 3.9.17
  3.8.x >= 3.8.17, and
  3.7.x >= 3.7.17
  In conversation about a year ago permalink
  Attachments
  1. No result found on File_thumbnail lookup.
    
    This website is under construction

Feeds