writeups.xyz
/
Kasimir Schulz (@Abraxus7331)
Title
Vulnerabilities
Programs
Authors
R-bitrary Code Execution: Vulnerability In R’s Deserialization (CVE-2024-27322)
Insecure Deserialization
R
Kasimir Schulz (@Abraxus7331)
Kieran Evans (@KieranEvans89)
Hijacking Safetensors Conversion On Hugging Face
Malicious AI Model
Supply Chain Attack
Hugging Face
Eoin Wickens (@Enwckns)
Kasimir Schulz (@Abraxus7331)
Tarfile: Exploiting the World With a 15-Year-Old Vulnerability
Path Traversal
Python
Kasimir Schulz (@Abraxus7331)
Page 1 of 1
writeups.xyz
/
Kasimir Schulz (@Abraxus7331)