Hacker News new | ask | show | jobs
by giosch 3574 days ago
If you had read the whole article, you would have the answer to your question. Es. It can get you to code execution if you poison python pickled data. Ecc..
2 comments
collyw 3574 days ago
I actually thought the opposite. Surely the database is more valuable than the ability to execute code. Assuming its a copy of the production database.
link
thebeardedone 3574 days ago
I give you that; I stopped reading it just before he mentioned that point. Thanks for pointing it out, very creative vulnerability.
link