2 matches found
GHSA-2X54-J4M3-R6WX sqla-yaml-fixtures is vulnerable to Code Injection
Sqlayamlfixtures versions up to 0.9.1 allows local users to execute arbitrary python code via the fixturetext argument in sqlayamlfixtures.load...
PYSEC-2019-122
Sqlayamlfixtures 0.9.1 allows local users to execute arbitrary python code via the fixturetext argument in sqlayamlfixtures.load...