Vulnerabilities
Vulnerable Software
Pyload:  >> Pyload  >> 0.4.20  Security Vulnerabilities
pyload is an open-source Download Manager written in pure Python. An authenticated user can change the download folder and upload a crafted template to the specified folder lead to remote code execution. There is no fix available at the time of publication.
CVSS Score
9.1
EPSS Score
0.04
Published
2024-04-26
pyLoad is an open-source Download Manager written in pure Python. There is an open redirect vulnerability due to incorrect validation of input values when redirecting users after login. pyLoad is validating URLs via the `get_redirect_url` function when redirecting users at login. This vulnerability has been patched with commit fe94451.
CVSS Score
4.7
EPSS Score
0.018
Published
2024-02-06
Cross-site Scripting (XSS) - Stored in GitHub repository pyload/pyload prior to 0.5.0b3.dev42.
CVSS Score
9.6
EPSS Score
0.003
Published
2023-01-26
Improper Certificate Validation in GitHub repository pyload/pyload prior to 0.5.0b3.dev44.
CVSS Score
7.4
EPSS Score
0.003
Published
2023-01-26
Excessive Attack Surface in GitHub repository pyload/pyload prior to 0.5.0b3.dev41.
CVSS Score
4.0
EPSS Score
0.003
Published
2023-01-22
Code Injection in GitHub repository pyload/pyload prior to 0.5.0b3.dev31.
CVSS Score
9.8
EPSS Score
0.94
Published
2023-01-14
Insufficient Session Expiration in GitHub repository pyload/pyload prior to 0.5.0b3.dev36.
CVSS Score
8.3
EPSS Score
0.003
Published
2023-01-12
Improper Restriction of Rendered UI Layers or Frames in GitHub repository pyload/pyload prior to 0.5.0b3.dev33.
CVSS Score
3.1
EPSS Score
0.002
Published
2023-01-05


Contact Us

Shodan ® - All rights reserved