Sqla Yaml Fixtures
1 CVEs
product
Monthly
Sqla_yaml_fixtures 0.9.1 allows local users to execute arbitrary python code via the fixture_text argument in sqla_yaml_fixtures.load. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.
Code Injection
Python
RCE
Sqla Yaml Fixtures
NVD
GitHub
CVSS 3.0
7.8
EPSS
0.4%
CVE-2019-3575
PyPI
EPSS 0%
CVSS 7.8
HIGH
POC
PATCH
This Week
Sqla_yaml_fixtures 0.9.1 allows local users to execute arbitrary python code via the fixture_text argument in sqla_yaml_fixtures.load. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.
Code Injection
Python
RCE
+1
NVD
GitHub