Exploitation Summary
EIP tracks 1 public exploit for EIP-2026-102960. PoCs published by rogueclown.
AI-analyzed exploit summary This exploit leverages Python's untrusted search path vulnerability to execute arbitrary code when `help('modules')` is called. It demonstrates the vulnerability by creating a malicious `test.py` script in the current directory, which executes a shell command to modify `/root/.ssh/authorized_keys` and change permissions of `/usr/bin/nmap`.
Description
Python - Untrusted Search Path/Code Execution
Exploits (1)
This exploit leverages Python's untrusted search path vulnerability to execute arbitrary code when `help('modules')` is called. It demonstrates the vulnerability by creating a malicious `test.py` script in the current directory, which executes a shell command to modify `/root/.ssh/authorized_keys` and change permissions of `/usr/bin/nmap`.