Vulnerabilities > JS Yaml Project
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2013-06-28 | CVE-2013-4660 | Improper Input Validation vulnerability in Js-Yaml Project Js-Yaml The JS-YAML module before 2.0.5 for Node.js parses input without properly considering the unsafe !!js/function tag, which allows remote attackers to execute arbitrary code via a crafted string that triggers an eval operation. | 6.8 |