Jsonpickle decode() function unsafely form objects that can lead to Remote code execution

[j0lt-github]

JsonPickle 1.4.2 allows remote code execution during deserialization of a malicious payload through the decode() function.

Attack Vectors : The jsonpickle can be exploited by deserialization of malicious jsonpickled payload with default decode() function of its object. The payload can be easily generated by this payload generator:
https://github.com/j0lt-github/python-deserialization-attack-payload-generator
and passed to decode function
like object = jsonpickle.decode(payload)
it will certainly execute command.

[d-hat]

According to this project's README:

WARNING: jsonpickle can execute arbitrary Python code. Do not load jsonpickles from untrusted / unauthenticated sources.

This property of pickle is well known and documented:

Warning: The pickle module is not secure. Only unpickle data you trust.

It is possible to construct malicious pickle data which will execute arbitrary code during unpickling

[jaraco]

This report was also sent to the project in Tidelift. I've responded there as well indicating that this is a known issue and that there's no known fix for this vulnerability. Recommend to close as wontfix.