CVE-2013-4660: Deserialization Code Execution

June 28, 2013 (updated July 1, 2013)

JS-YAM contains a code execution vulnerability.

References

nealpoole.com/blog/2013/06/code-execution-via-yaml-in-js-yaml-nodejs-module/

Detect and mitigate CVE-2013-4660 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →