Vulnerabilities > Guillaume Gauvrit
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2013-08-06 | CVE-2013-1630 | Improper Input Validation vulnerability in Guillaume Gauvrit Pyshop pyshop before 0.7.1 uses HTTP to retrieve packages from the PyPI repository, and does not perform integrity checks on package contents, which allows man-in-the-middle attackers to execute arbitrary code via a crafted response to a download operation. | 6.8 |