Vulnerabilities (CVE)

Filtered by vendor Djangoproject Subscribe
Filtered by product Piston
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2011-4103 1 Djangoproject 1 Piston 2024-02-28 7.5 HIGH N/A
emitters.py in Django Piston before 0.2.3 and 0.2.x before 0.2.2.1 does not properly deserialize YAML data, which allows remote attackers to execute arbitrary Python code via vectors related to the yaml.load method.