CVE-2019-3575

Published January 3rd, 2019

View on NVD ↗

CVSS v3

N/A

CVSS v2

4.6

MEDIUM

Affected

1

PROJECT

Description

Sqla_yaml_fixtures 0.9.1 allows local users to execute arbitrary python code via the fixture_text argument in sqla_yaml_fixtures.load.

schettino72/sqla_yaml_fixtures

Load YAML data fixtures for SQLAlchemy

GitHub

14