CVE-2026-24049 PoC — wheel 安全漏洞

Source

https://github.com/kriskimmerle/wheelaudit

Associated Vulnerability

Title:wheel 安全漏洞 (CVE-2026-24049)
Description:wheel是Python Packaging Authority开源的一个命令行工具。 wheel 0.46.1及之前版本存在安全漏洞，该漏洞源于解包函数在提取后错误处理文件权限，可能导致权限提升或任意代码执行。

Description

Python Wheel File Security Scanner — scan .whl files for security issues before installation. Detects path traversal (CVE-2026-24049), RECORD tampering, command shadowing, secrets, zip bombs. Zero deps.

File Snapshot


 None

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!