CVE-2022-34060 Information

Description

The Togglee package in PyPI version v0.0.8 was discovered to contain a code execution backdoor. This vulnerability allows attackers to access sensitive user information and digital currency keys as well as escalate privileges.

Reference

https://pypi.org/project/togglee/ http://pypi.doubanio.com/simple/request https://github.com/togglee/togglee-python/issues/2