CVE-2011-4103
Publication date 27 October 2014
Last updated 24 July 2024
Ubuntu priority
emitters.py in Django Piston before 0.2.3 and 0.2.x before 0.2.2.1 does not properly deserialize YAML data, which allows remote attackers to execute arbitrary Python code via vectors related to the yaml.load method.
Status
Package | Ubuntu Release | Status |
---|---|---|
python-django-piston | ||