https://github.com/tkmru/vuln_pickle_server
https://github.com/tkmru/vuln_pickle_server
Last synced: 4 months ago
JSON representation
- Host: GitHub
- URL: https://github.com/tkmru/vuln_pickle_server
- Owner: tkmru
- Created: 2016-11-12T17:06:33.000Z (almost 9 years ago)
- Default Branch: master
- Last Pushed: 2016-11-12T19:54:01.000Z (almost 9 years ago)
- Last Synced: 2025-03-27T11:43:44.341Z (6 months ago)
- Language: Python
- Size: 1000 Bytes
- Stars: 0
- Watchers: 2
- Forks: 1
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# vuln pickle server
Vulnerable server using pickle and exploit.
'''
The pickle module is not secure against erroneous or maliciously constructed data.
Never unpickle data received from an untrusted or unauthenticated source.
'''
[11.1. pickle — Python object serialization — Python 2.7.12 documentation](https://docs.python.org/2/library/pickle.html?highlight=pickles)
## detailed description (in Japanese)
[Pythonの外部入力をunpickle化することによる脆弱性を用いたexploitを書いた - 脱力系日記](http://tkmr.hatenablog.com/entry/2015/08/02/151418)