← Back to CVE List
CVE-2024-23730
Published:
2024-01-21T17:15Z
Last Modified:
2024-11-21T08:58Z
Source:
MITRE CVE List
License:
MITRE-CVE-TOS
The OpenAPI and ChatGPT plugin loaders in LlamaHub (aka llama-hub) before 0.0.67 allow attackers to execute arbitrary code because safe_load is not used for YAML. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt