CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-44054
https://notcve.org/view.php?id=CVE-2022-44054
The d8s-xml for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-utility package. The affected version of d8s-htm is 0.1.0. El d8s-xml para Python, distribuido en PyPI, incluía un posible backdoor de ejecución de código insertada por un tercero. Un posible backdoor de ejecución de código insertada por terceros es el paquete de utilidad democritus. • https://github.com/dadadadada111/info/issues/18 https://pypi.org/project/d8s-xml https://pypi.org/project/democritus-utility • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-42043
https://notcve.org/view.php?id=CVE-2022-42043
The d8s-xml package for Python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-html package. The affected version is 0.1.0. El paquete d8s-xml para Python, distribuido en PyPI, incluía una potencial puerta trasera de ejecución de código insertada por un tercero. La puerta trasera es el paquete democritus-html. • https://github.com/dadadadada111/info/issues/5 https://pypi.org/project/d8s-xml https://pypi.org/project/democritus-html • CWE-434: Unrestricted Upload of File with Dangerous Type •