2 matches found
Arbitrary Code Injection
Overview datamodel-code-generator is a Datamodel Code Generator Affected versions of this package are vulnerable to Arbitrary Code Injection due to improper sanitization of filenames used in generated headers. An attacker can provide a maliciously crafted filename containing Python syntax or esca...
aas-middleware (>=0.1.0 <=0.2.6), agency-skej-framework (>=0.0.1 <=0.0.7) +89 more potentially affected by unknown CVE via datamodel-code-generator (>=0.10.3 <=0.30.2)
datamodel-code-generator PYPI version =0.10.3, =0.1.0, =0.0.1, =0.2.5, =0.1.0a0, =0.0.0, =0.1.6, =0.1.4, =0.1.0, =0.1.0, =1.0.0, =0.10.2, =0.1.0, =2024.12.13.post0, =2024.12.13.post1 and more Source cves: unknown CVE Source advisory: SNYK:PYTHON-DATAMODELCODEGENERATOR-14829603...