mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-31 05:59:31 +02:00
0xMarcio
939 B
939 B
CVE-2022-22817
Description
PIL.ImageMath.eval in Pillow before 9.0.0 allows evaluation of arbitrary expressions, such as ones that use the Python exec method. A lambda expression could also be used.
POC
Reference
No PoCs from references.
Github
- https://github.com/ARPSyndicate/cvemon
- https://github.com/CPester05/Exploits
- https://github.com/JawadPy/CVE-2022-22817
- https://github.com/JawadPy/CVE-2022-22817-Exploit
- https://github.com/NaInSec/CVE-LIST
- https://github.com/SaintsConnor/Exploits
- https://github.com/nomi-sec/PoC-in-GitHub
- https://github.com/p1tsi/Huntress-CTF-2024