Vulnerability Database
Blog
FAQ
Docs
PYSEC-2018-103
See a problem?
Import Source
https://github.com/pypa/advisory-database/blob/main/vulns/ymlref/PYSEC-2018-103.yaml
JSON Data
https://api.osv.dev/v1/vulns/PYSEC-2018-103
Aliases
CVE-2018-20133
GHSA-8r8j-xvfj-36f9
Published
2018-12-17T19:29:00Z
Modified
2023-11-08T04:00:11.089137Z
Summary
[none]
Details
ymlref allows code injection.
References
https://github.com/dexter2206/ymlref/issues/2
https://github.com/advisories/GHSA-8r8j-xvfj-36f9
Affected packages
PyPI
/
ymlref
Package
Name
ymlref
View open source insights on deps.dev
Purl
pkg:pypi/ymlref
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Affected versions
0.*
0.1.0
0.1.1
PYSEC-2018-103 - OSV