This Metasploit module exploits an authenticated Python unsafe pickleload of a Dict file An authenticated attacker can create a photo library and add arbitrary files to it After setting the Windows only Plex variable LocalAppDataPath to the newly created photo library, a file named Dict will be unpickled, which causes remote code execution as th ...