Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pyload pyload 0.5.0 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2024-21644
pyLoad is the free and open-source Download Manager written in pure Python. Any unauthenticated user can browse to a specific URL to expose the Flask config, including the `SECRET_KEY` variable. This issue has been patched in version 0.5.0b3.dev77.
Pyload Pyload
Pyload Pyload 0.5.0
1 Github repository
5.3
CVSSv3
CVE-2024-21645
pyLoad is the free and open-source Download Manager written in pure Python. A log injection vulnerability was identified in `pyload` allowing any unauthenticated actor to inject arbitrary messages into the logs gathered by `pyload`. Forged or otherwise, corrupted log files can be...
Pyload Pyload
Pyload Pyload 0.5.0
7.5
CVSSv3
CVE-2023-0434
Improper Input Validation in GitHub repository pyload/pyload before 0.5.0b3.dev40.
Pyload Pyload
Pyload Pyload 0.5.0
5.3
CVSSv3
CVE-2023-0055
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository pyload/pyload before 0.5.0b3.dev32.
Pyload Pyload 0.5.0
8.8
CVSSv3
CVE-2023-47890
pyLoad 0.5.0 is vulnerable to Unrestricted File Upload.
Pyload Pyload 0.5.0
9.8
CVSSv3
CVE-2023-0297
Code Injection in GitHub repository pyload/pyload before 0.5.0b3.dev31.
Pyload Pyload
7 Github repositories
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2018-25103
CVE-2024-36279
CVE-2024-38457
elevation of privilege
CVE-2024-27801
CVE-2024-30103
NULL pointer dereference
CVE-2024-6057
XML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started