calculator-bot
calculator-bot copied to clipboard
Remote code execution
Why did you even think of doing this?
https://github.com/odysseusmax/calculator-bot/blob/0c228232dba8839752e9ca1c729f860d48334a05/helpers/bot.py#L54
It evaluates any python code that is passed in it, so using
@calcit_bot __import__('os').execvp("/bin/bash", ["/bin/bash"])
is enough to kill the bot.