3 matches found
CVE-2018-20133
ymlref allows code injection...
CVE-2018-20133
CVE-2018-20133 concerns the ymlref library, where the vulnerability is a code injection flaw. The connected advisories specify that ymlref versions up to 0.1.1 are susceptible to code injection when loading YAML documents and resolving JSON-pointer references. The CVSS data in the initial entry i...
CVE-2018-20133
ymlref allows code injection...