The Beginner package in PyPI v0.0.2 to v0.0.4 was discovered to contain a code execution backdoor via the request package. This vulnerability allows attackers to access sensitive user information and digital currency keys, as well as escalate privileges.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Beginner | Pypi | 0.0.2 (including) | 0.0.4 (including) |