server-client communication uses pickles to deserialize transmitted data

kevin220901 / TINF21CS2-SE2-PROJECT

Project Advanced Software Engineering

2 stars 0 forks source link

server-client communication uses pickles to deserialize transmitted data #29

Closed CelMur closed 10 months ago

CelMur commented 10 months ago

Security Schwachstelle die zu remote Code-Execution führen kann. Stattdessen soll das modul 'json' verwendet werde, um die Nachrichten zu de-/serialisieren.

CelMur commented 10 months ago

replaced pickle serialization with json serialization