agents icon indicating copy to clipboard operation
agents copied to clipboard

Published 20 hours ago verified publisher icon aiwaves-cn

Potential Security Issue on Code Injection

Open nevercodecorrect opened this issue 9 months ago • 0 comments

In code here, it eval an environment. A malicious local actor could set some values like export FETSIZE='os.system("touch rickroll")' to execute code. This issue is similar to CVE-2022-2054.

nevercodecorrect avatar May 10 '24 17:05 nevercodecorrect