Lucene search
PRIOn knowledge basePRION:CVE-2024-21645HistoryJan 08, 2024 - 2:15 p.m.
Design/Logic Flaw
2024-01-0814:15:00
PRIOn knowledge base
www.prio-n.com
3
pyload
download manager
python
log injection
vulnerability
patched
pyLoad is the free and open-source Download Manager written in pure Python. A log injection vulnerability was identified in pyload allowing any unauthenticated actor to inject arbitrary messages into the logs gathered by pyload. Forged or otherwise, corrupted log files can be used to cover an attackerβs tracks or even to implicate another party in the commission of a malicious act. This vulnerability has been patched in version 0.5.0b3.dev77.
| CPE | Name | Operator | Version |
|---|---|---|---|
| pyload | le | 0.4.9 | |
| pyload | eq | 0.5.0 beta1 | |
| pyload | eq | 0.5.0 beta2 |
Related
osv
osv
pyload Log Injection vulnerability
2024-01-08 15:29:55
CVE-2024-21645
2024-01-08 14:15:47
github
github
pyload Log Injection vulnerability
2024-01-08 15:29:55
nvd
nvd
CVE-2024-21645
2024-01-08 14:15:47
nuclei
nuclei
pyload - Log Injection
2024-02-01 05:40:06
veracode
veracode
Log Injection
2024-01-09 07:57:07
cvelist
cvelist
CVE-2024-21645 pyLoad Log Injection
2024-01-08 13:20:47
cve
cve
CVE-2024-21645
2024-01-08 14:15:47