Shay Reuven

1 exploit Active since May 2026
CVE-2021-47952 EXPLOITDB CRITICAL python WORKING POC
python jsonpickle 2.0.0 Remote Code Execution via py/repr
python jsonpickle 2.0.0 contains a remote code execution vulnerability that allows attackers to execute arbitrary Python commands by deserializing malicious JSON payloads containing py/repr objects. Attackers can craft JSON strings with py/repr directives that invoke the eval function during deserialization to execute arbitrary code.
CVSS 9.8