Remote code execution
TheHamkerCat opened this issue · comments
Akshay Rajput commented
Why did you even think of doing this?
Line 54 in 0c22823
It evaluates any python code that is passed in it, so using
@calcit_bot __import__('os').execvp("/bin/bash", ["/bin/bash"])
is enough to kill the bot.
Deleted user commented
XD