CVE-2014-3007 in Python Imaging Library
摘要
由 MITRE
Python Image Library (PIL) 1.1.7 and earlier and Pillow 2.3 might allow remote attackers to execute arbitrary commands via shell metacharacters in unspecified vectors related to CVE-2014-1932, possibly JpegImagePlugin.py.
If you want to get the best quality for vulnerability data then you always have to consider VulDB.