New Python URL Parsing Flaw Could Enable Command Execution Attacks
New Python URL Parsing Flaw Could Enable Command Execution Attacks
14 August 2023
A high-severity security flaw disclosed in the Python URL parsing function could be exploited to bypass domain or protocol filtering methods implemented with a blocklist, resulting in arbitrary file reads and command execution.