CVE-2024-28397

This PoC demonstrates a sandbox escape vulnerability in js2py (<=0.74) by exploiting improper handling of global variables to gain access to Python objects, enabling arbitrary command execution. The exploit uses JavaScript to traverse Python object hierarchies and spawn a subprocess.

This repository contains a functional exploit for CVE-2024-28397, a sandbox escape vulnerability in js2py <= 0.74. The exploit leverages Python object introspection via JavaScript to access subprocess.Popen and execute a reverse shell.

This PoC demonstrates a sandbox escape in js2py via incomplete sandboxing, allowing arbitrary command execution by traversing Python's internal object model to access subprocess.Popen. The exploit leverages JavaScript to bypass import restrictions and execute commands.

This repository contains a Python-based payload generator for CVE-2024-28397, which exploits a sandbox escape vulnerability in Js2Py <= 0.74. The exploit leverages Object.getOwnPropertyNames to access Python's subprocess.Popen and execute arbitrary commands.

This repository contains a PHP-based exploit for CVE-2024-28397, a sandbox escape vulnerability in js2py up to v0.74. The exploit leverages improper restrictions in the `disable_pyimport()` method to execute arbitrary commands via a crafted JavaScript payload, resulting in remote code execution (RCE).

This repository contains a Python script that automates the exploitation of CVE-2024-28397, a sandbox escape vulnerability in the js2py library. The exploit generates a malicious JavaScript payload to achieve remote code execution via a reverse shell.

This repository contains a functional exploit for CVE-2024-28397, targeting js2py <= v0.74. The exploit leverages a JavaScript sandbox escape to achieve remote code execution (RCE) via a reverse shell payload.

This is a functional exploit for CVE-2024-28397 targeting js2py <= v0.74, leveraging a prototype pollution vulnerability to achieve remote code execution via a reverse shell. The exploit uses a crafted JavaScript payload to bypass restrictions and execute arbitrary commands.

This is a functional exploit for CVE-2024-28397, targeting js2py <= v0.74. It leverages a JavaScript payload to achieve remote code execution (RCE) by abusing Python object manipulation to spawn a subprocess.

This is a functional exploit for CVE-2024-28397, targeting a sandbox escape vulnerability in js2py <= 0.74. It generates a JavaScript payload that escapes the sandbox and executes a reverse shell via subprocess.Popen.

This is a functional Python-based PoC for CVE-2024-28397, exploiting a sandbox escape in Js2Py to achieve RCE via a reverse shell. The exploit leverages Python object traversal to access subprocess.Popen and execute arbitrary commands.

This exploit leverages a JavaScript-to-Python (JS2PY) vulnerability (CVE-2024-28397) to achieve remote code execution by manipulating object prototypes and subclass traversal to access and execute subprocess.Popen. The payload is injected via a JSON POST request to a vulnerable endpoint.

This repository contains a working exploit for CVE-2024-28397, a sandbox escape vulnerability in js2py that allows arbitrary code execution via Python object introspection. The exploit uses JavaScript to access Python's internal objects and execute system commands through subprocess.Popen.

This PoC exploits CVE-2024-28397, a Remote Code Execution vulnerability in pyload-ng due to insecure usage of js2py. The exploit leverages a malicious JavaScript payload to escape the js2py sandbox and execute arbitrary system commands, resulting in a reverse shell.

This PoC demonstrates a sandbox escape in js2py by exploiting a vulnerability to execute arbitrary commands via subprocess.Popen. The exploit leverages Python object manipulation within the JavaScript environment to bypass restrictions.

This PoC demonstrates a sandbox escape vulnerability in js2py (<=0.74) by exploiting improper handling of global variables to execute arbitrary commands on the host system. The payload uses JavaScript to access Python objects and spawn a subprocess, bypassing `disable_pyimport()` restrictions.

This Metasploit module exploits CVE-2024-39205 (Pyload RCE) by leveraging CVE-2024-28397 (js2py sandbox escape) to execute arbitrary commands via the /flash/addcrypted2 endpoint. It bypasses localhost restrictions using the Host header and achieves unauthenticated RCE.