sqla-yaml-fixtures

PyPI1 known CVE affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting sqla-yaml-fixturespage 1 of 1

CVE-2019-3575HIGHCVSS 7.8✓ Fixed in 1.0.0
2019-01-03
vulnerable: 0.1.0 ... 0.9.1 (12 versions)
Sqla_yaml_fixtures 0.9.1 allows local users to execute arbitrary python code via the fixture_text argument in sqla_yaml_fixtures.load.

Check whether sqla-yaml-fixtures is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for sqla-yaml-fixtures CVEs against the assets you own.

Start Free Scan →