Количество 4
Количество 4
CVE-2011-4104
The from_yaml method in serializers.py in Django Tastypie before 0.9.10 does not properly deserialize YAML data, which allows remote attackers to execute arbitrary Python code via vectors related to the yaml.load method.
CVE-2011-4104
The from_yaml method in serializers.py in Django Tastypie before 0.9.10 does not properly deserialize YAML data, which allows remote attackers to execute arbitrary Python code via vectors related to the yaml.load method.
CVE-2011-4104
The from_yaml method in serializers.py in Django Tastypie before 0.9.1 ...
GHSA-qgvw-qc2q-gv5q
Django Tastypie Improper Deserialization of YAML Data
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2011-4104 The from_yaml method in serializers.py in Django Tastypie before 0.9.10 does not properly deserialize YAML data, which allows remote attackers to execute arbitrary Python code via vectors related to the yaml.load method. | CVSS2: 7.5 | 1% Низкий | больше 11 лет назад |
 | CVE-2011-4104 The from_yaml method in serializers.py in Django Tastypie before 0.9.10 does not properly deserialize YAML data, which allows remote attackers to execute arbitrary Python code via vectors related to the yaml.load method. | CVSS2: 7.5 | 1% Низкий | больше 11 лет назад |
| CVE-2011-4104 The from_yaml method in serializers.py in Django Tastypie before 0.9.1 ... | CVSS2: 7.5 | 1% Низкий | больше 11 лет назад |
| GHSA-qgvw-qc2q-gv5q Django Tastypie Improper Deserialization of YAML Data | CVSS3: 9.8 | 1% Низкий | больше 3 лет назад |
Уязвимостей на страницу