Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2023-24329 PoC — Python 输入验证错误漏洞

Source
https://github.com/Pandante-Central/CVE-2023-24329-codeql-test
Associated Vulnerability
Title:Python 输入验证错误漏洞 (CVE-2023-24329)
Description:Python是Python基金会的一套开源的、面向对象的程序设计语言。该语言具有可扩展、支持模块和包、支持多种平台等特点。 Python 3.11之前版本存在输入验证错误漏洞,该漏洞源于允许攻击者通过提供以空白字符开头的URL来绕过黑名单。
File Snapshot

 [4.0K]  /data/pocs/3c5287f1171c9fc2bd5290b9ec77a69f4e52ce88
├── [4.0K]  python
│   └── [1.8K]  UnsanitizedUrlParse.ql
├── [ 116]  qlpack.yml
├── [  29]  queries.xml
└── [ 561]  test.py

1 directory, 4 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.