Improper input validation in Mmaitre314 Picklescan

CVE-2025-10155

An Improper Input Validation vulnerability in the scanning logic of mmaitre314 picklescan versions up to and including 0.0.30 allows a remote attacker to bypass pickle files security checks by supplying a standard pickle file with a PyTorc…

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.001 (22.1th percentile) — read the EPSS interpretation.

Affected products

Mmaitre314 Picklescan — versions 0

Weakness classification (CWE)

CWE-20 — Improper Input Validation

References

Vulnerable Code
Proof of Concept Instructions (GHSA) (exploit, vendor-advisory)