Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An exploitable vulnerability exists in the Databook loading functionality of Tablib 0.11.4. A yaml loaded Databook can execute arbitrary python commands resulting in command execution. An attacker can insert python into loaded yaml to trigger this vulnerability.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Tablib 安全漏洞
Vulnerability Description
Tablib是Kenneth Reitz项目的一个使用Python语言编写的库,它能够导入、导出并管理表格格式数据。 Tablib 0.11.4版本中的Databook加载功能存在代码执行漏洞。攻击者可利用该漏洞执行任意的python命令。
CVSS Information
N/A
Vulnerability Type
N/A