Piston

DATE	CVE	VULNERABILITY TITLE	RISK
2014-10-27	CVE-2011-4103	Improper Input Validation vulnerability in Djangoproject Piston 0.2.2.0 emitters.py in Django Piston before 0.2.3 and 0.2.x before 0.2.2.1 does not properly deserialize YAML data, which allows remote attackers to execute arbitrary Python code via vectors related to the yaml.load method. network low complexity djangoproject CWE-20	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.