VulnerableCode Package Details - pkg:pypi/pyqlib@0.5.1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:pypi/pyqlib@0.5.1

purl	pkg:pypi/pyqlib@0.5.1

Next non-vulnerable version	0.6.3
Latest non-vulnerable version	0.7.0
Risk	3.1

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-mhxk-2gdh-u3hb Aliases: CVE-2021-23338 GHSA-hjr4-fhgp-23g9 PYSEC-2021-86 SNYK-PYTHON-QLIB-1054635	This affects all versions of package qlib. The workflow function in cli part of qlib was using an unsafe YAML load function.	0.6.3 Affected by 0 other vulnerabilities. 0.7.0 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-mhxk-2gdh-u3hb
Aliases:
CVE-2021-23338
GHSA-hjr4-fhgp-23g9
PYSEC-2021-86
SNYK-PYTHON-QLIB-1054635

This affects all versions of package qlib. The workflow function in cli part of qlib was using an unsafe YAML load function.

0.6.3
Affected by 0 other vulnerabilities.

0.7.0
Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-02T04:08:21.147809+00:00	Pypa Importer	Affected by	VCID-mhxk-2gdh-u3hb	https://github.com/pypa/advisory-database/blob/main/vulns/pyqlib/PYSEC-2021-86.yaml	38.6.0