CVE-2023-0297
Description
Code Injection in GitHub repository pyload/pyload prior to 0.5.0b3.dev31.
NVD
Severity: CRITICAL
CVE ID: CVE-2023-0297
CVSS Score: 9.8
CVSS Metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
huntr.dev
Severity: CRITICAL
CVE ID: CVE-2023-0297
CVSS Score: 9.8
CVSS Metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Proof Of Concept
Nuclei Templates for CVE-2023-0297
Refrence: Project Discovery GitHub
bAuh0lz
CVE-2023-0297: The Story of Finding Pre-auth RCE in pyLoad
Refrence: GitHub
Small-ears
poc
Refrence: GitHub
JacobEbben
Unauthenticated Remote Code Execution in PyLoad <0.5.0b3.dev31
Refrence: GitHub
overgrowncarrot1
Refrence: GitHub