BestHub
search
Sign in
Tag

Path Hijacking

1 views collected around this technical thread.

Python Programming Learning Circle
Python Programming Learning Circle
Aug 22, 2023 · Information Security

Avoid Security Risks When Running Python Scripts from the Downloads Folder and Using $PYTHONPATH

Running Python scripts from the Downloads folder or misusing $PYTHONPATH can expose your system to malicious code takeover, as demonstrated by examples where attacker‑placed pip.py or modules hijack execution; the article explains the risks and recommends safe practices like using virtualenv and proper path management.

PYTHONPATHPath HijackingSecurity
0 likes · 9 min read
Avoid Security Risks When Running Python Scripts from the Downloads Folder and Using $PYTHONPATH
Python Programming Learning Circle
Python Programming Learning Circle
Mar 9, 2022 · Information Security

Why Using $PYTHONPATH Is Unsafe and How to Secure Python Execution

The article explains how using the $PYTHONPATH environment variable and running Python from the Downloads folder can expose systems to code injection attacks, demonstrates exploit examples, and provides safe practices such as using virtualenv and proper path handling to protect Python execution.

Code InjectionPYTHONPATHPath Hijacking
0 likes · 7 min read
Why Using $PYTHONPATH Is Unsafe and How to Secure Python Execution