Vulnerabilities > CVE-2022-30286 - Unspecified vulnerability in Pyscript
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
pyscriptjs (aka PyScript Demonstrator) in PyScript through 2022-05-04 allows a remote user to read Python source code.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
References
- https://cyber-guy.gitbook.io/cyber-guy/blogs/the-art-of-vulnerability-chaining-pyscript
- https://cyber-guy.gitbook.io/cyber-guy/pocs/pyscript-file-read
- https://github.com/pyscript/pyscript/commits/main
- http://packetstormsecurity.com/files/167069/PyScript-2022-05-04-Alpha-Source-Code-Disclosure.html
- https://www.exploit-db.com/exploits/50918