2 matches found
CVE-2024-23730
The OpenAPI and ChatGPT plugin loaders in LlamaHub aka llama-hub before 0.0.67 allow attackers to execute arbitrary code because safeload is not used for YAML...
LlamaHub Security Breach
LlamaHub is an open source repository full of data loaders from the LlamaHub community. A security vulnerability exists in LlamaHub versions prior to 0.0.67. An attacker can execute arbitrary code by exploiting the vulnerability...