Headline
GHSA-cxfr-5q3r-2rc2: Jinja2 template injection in mlflow
Improper Neutralization of Special Elements Used in a Template Engine in GitHub repository mlflow/mlflow prior to 2.9.2.
Jinja2 template injection in mlflow
Critical severity GitHub Reviewed Published Dec 12, 2023 to the GitHub Advisory Database • Updated Dec 13, 2023
Related news
CVE-2023-6709
Improper Neutralization of Special Elements Used in a Template Engine in GitHub repository mlflow/mlflow prior to 2.9.2.