Required CVE Record Information
Description
The Rondolu-YT-Concate package in PyPI v0.1.0 was discovered to contain a code execution backdoor. This vulnerability allows attackers to access sensitive user information and digital currency keys, as well as escalate privileges.
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 3 Total
- http://pypi.doubanio.com/simple/request x_transferred
- https://pypi.org/project/rondolu-yt-concate/ x_transferred
- https://github.com/rondolu/project-yt-concate/issues/1 x_transferred