Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:pypi/ymlref@0.1.1
purl pkg:pypi/ymlref@0.1.1
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-mzbm-q7ff-gfcy
Aliases:
CVE-2018-20133
GHSA-8r8j-xvfj-36f9
PYSEC-2018-103
ymlref allows code injection. There are no reported fixed by versions.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-06-02T04:38:42.143369+00:00 GitLab Importer Affected by VCID-mzbm-q7ff-gfcy https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/ymlref/CVE-2018-20133.yml 38.6.0