Llamahub: >> Llamahub >> 0.0.20 Security Vulnerabilities
The OpenAPI and ChatGPT plugin loaders in LlamaHub (aka llama-hub) before 0.0.67 allow attackers to execute arbitrary code because safe_load is not used for YAML.
CVSS Score
9.8
EPSS Score
0.002
Published
2024-01-21