CVE-2024-28425

greykite v1.0.0 was discovered to contain an arbitrary file upload vulnerability in the load_obj function at /templates/pickle_utils.py. This vulnerability allows attackers to execute arbitrary code via uploading a crafted file. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt