All 3 CVE vulnerabilities found in PySpector, with AI-generated Chinese analysis, references, and POCs.
Vendor: ParzivalHack
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-41206 | PySpector has a Plugin Code Execution Bypass via Incomplete Static Analysis in PluginSecurity.validate_plugin_code CWE-184 | 8.8AI | HighAI | 2026-04-23 |
| CVE-2026-33140 | PySpector: Stored XSS in PySpector HTML Report Generation leads to Javascript Code Execution CWE-79 | 5.4 | - | 2026-03-20 |
| CVE-2026-33139 | PySpector: Plugin Sandbox Bypass leads to Arbitrary Code Execution CWE-184 | 9.8 | - | 2026-03-20 |
All 3 known CVE vulnerabilities affecting PySpector with full Chinese analysis, references, and POCs where available.