Django-make-app Arbitrary Command Execution Vulnerability
djangomakeapp is a tool for generating code for Django applications. A security vulnerability exists in the YAML parsing function of the readyamlfile method of the ioutils.py file in djangomakeapp version 0.1.3. An attacker can exploit this vulnerability by injecting Python into loaded YAML to...