Prototype Pollution-like Bug in Python

The session aims to shed light on a new variant of prototype pollution vulnerabilities that are well-known to be exclusive for JavaScript-based applications, by showing (what I love to call) class pollution vulnerability in Python. During the session, we will have a look at the normal JS prototype pollution in brief, discuss the motivation behind and the steps of our research, and show class pollution in Python with some cool gadgets that you may come across.