PyPI · pypi.org
kagesec
DNS / OAST exfiltration: matched "oast.pro"
Why PkgRadar flagged 0.3.0
| Severity | Signal | Evidence |
|---|---|---|
| high | DNS / OAST exfiltration | matched "oast.pro" · kagesec-0.3.0.data/purelib/cli/main.py |
| high | DNS / OAST exfiltration | matched "oast.pro" · kagesec-0.3.0.data/purelib/scanner/core/config.py |
| high | DNS / OAST exfiltration | matched "oast.fun" · kagesec-0.3.0.data/purelib/scanner/core/interactsh.py |
| high | DNS / OAST exfiltration | matched "oast.pro" · kagesec-0.3.0.data/purelib/scanner/modules/log4j_deep.py |
| high | DNS / OAST exfiltration | matched "oast.pro" · kagesec-0.3.0.data/purelib/scanner/templates/cves/CVE-2021-44228.yaml |
| high | DNS / OAST exfiltration | matched "oast.pro" · kagesec-0.3.0.data/purelib/scanner/templates/cves/CVE-2021-45046.yaml |
| medium | Remote Payload | matched "curl " · kagesec-0.3.0.data/purelib/scanner/modules/ssti.py |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
0.3.0 | High risk | 100 | 2026-06-05 |
0.2.9 | High risk | 100 | 2026-06-04 |
0.2.8 | High risk | 100 | 2026-06-04 |
0.2.7 | High risk | 100 | 2026-06-02 |
0.2.6 | High risk | 100 | 2026-06-01 |
0.2.5 | High risk | 100 | 2026-06-01 |
0.2.4 | High risk | 100 | 2026-05-31 |
0.2.3 | High risk | 100 | 2026-05-30 |
0.2.2 | High risk | 100 | 2026-05-30 |
0.2.1 | High risk | 100 | 2026-05-30 |
0.2.0 | High risk | 100 | 2026-05-30 |
Block this in CI
pkgradar gate --ecosystem pypi kagesec==0.3.0