So, if an application accepts user-supplied input (such as a JSON payload), is that data marked as non-executable?
On Monday, September 3, 2018, Greg Ewing <greg.ew...@canterbury.ac.nz> wrote: > Jonathan Fine wrote: > > # Evil code! > >> ask_delete.__code__, ask_save.__code__ = ask_save.__code__, >> ask_delete.__code__ >> > > If an attacker can trick you into executing that line of code, > he can probably just delete your data directly. > > -- soon > Greg > _______________________________________________ > Python-ideas mailing list > Python-ideas@python.org > https://mail.python.org/mailman/listinfo/python-ideas > Code of Conduct: http://python.org/psf/codeofconduct/ >
_______________________________________________ Python-ideas mailing list Python-ideas@python.org https://mail.python.org/mailman/listinfo/python-ideas Code of Conduct: http://python.org/psf/codeofconduct/
