Command injection in paddle.utils.download.wgetdownload (bypass filter) in paddlepaddle/paddle 2.6.0
"https://github.com/pypa/advisory-database/blob/main/vulns/paddlepaddle/PYSEC-2026-1756.yaml"