N/A

CVSS Score

Basic Information

CVE ID

CVE-2025-50817

GHSA ID

GHSA-xqrq-4mgf-ff32

EPSS Score

0.02509%

CWE

CWE-22

Published

8/14/2025

Updated

8/14/2025

KEV Status

Technology

Python

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2025-50817

CVE-2025-50817: Python-Future Module Arbitrary Code Execution via Unintended Import of test.py

A vulnerability in the Python-Future 1.0.0 module allows for arbitrary code execution via the unintended import of a file named test.py. When the module is loaded, it automatically imports test.py, if present in the same directory or in the sys.path. This behavior can be exploited by an attacker who has the ability to write files to the server, allowing the execution of arbitrary code.

(GitHub Advisory)

N/A

CVSS Score

Basic Information

CVE ID

CVE-2025-50817

GHSA ID

GHSA-xqrq-4mgf-ff32

EPSS Score

0.02509%

CWE

CWE-22

Published

8/14/2025

Updated

8/14/2025

KEV Status

Technology

Python

Technical Details

CVSS Vector

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
future	pip	= 1.0.0

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability exists in the python-future library, specifically within the future.standard_library module. The root cause is an unconditional import of a module named test within the install_aliases function. This function is intended to create aliases for Python 3 standard library modules in a Python 2 environment.

The line import test does not specify a fully qualified path, causing Python to search for test.py in the directories listed in sys.path. If an attacker has write permissions to any of these directories, they can create a malicious test.py file. When the future library is initialized by calling install_aliases() or install_hooks(), the attacker's file will be imported and its code executed, leading to arbitrary code execution.

This is particularly dangerous in environments where file uploads are allowed, as an attacker could potentially place the malicious test.py in a location that is part of the application's execution path. The vulnerability is present in version 1.0.0 of the future package, and no patch was released for this version; instead, users are advised to upgrade to a non-vulnerable version.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

* vuln*r**ility in t** Pyt*on-*utur* *.*.* mo*ul* *llows *or *r*itr*ry *o** *x**ution vi* t** unint*n*** import o* * *il* n*m** t*st.py. W**n t** mo*ul* is lo****, it *utom*ti**lly imports t*st.py, i* pr*s*nt in t** s*m* *ir**tory or in t** sys.p*t*.

Reasoning

T** vuln*r**ility *xists in t** `pyt*on-*utur*` li*r*ry, sp**i*i**lly wit*in t** `*utur*.st*n**r*_li*r*ry` mo*ul*. T** root **us* is *n un*on*ition*l import o* * mo*ul* n*m** `t*st` wit*in t** `inst*ll_*li*s*s` *un*tion. T*is *un*tion is int*n*** to

N/A

Basic Information

Concerned about an active attack path?

CVE-2025-50817: Python-Future Module Arbitrary Code Execution via Unintended Import of test.py

N/A

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI