Find real vulnerabilities before they ship
Vulnerability Database › pypi › CVE-2023-52311
PaddlePaddle before 2.6.0 has a command injection in _wget_download. This resulted in the ability to execute arbitrary commands on the operating system.
Base Score