Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
•added 2025/02/05 11:0 a.m.•11 views

CVE-2024-21644

pyLoad is the free and open-source Download Manager written in pure Python. Any unauthenticated user can browse to a specific URL to expose the Flask config, including the SECRETKEY variable. This issue has been patched in version 0.5.0b3.dev77...

7.5CVSS6.8AI score0.42173EPSS
Exploits1References1
CVE
CVE
•added 2024/01/08 1:20 p.m.•85 views

CVE-2024-21644

Affected software: pyLoad (Python-based download manager). Issue: Unauthenticated users can access the Flask configuration, including the SECRET_KEY, via a specific URL endpoint, due to improper access control in the web UI. Root cause / details: The vulnerability is triggered by a route that ren...

7.5CVSS7.4AI score0.42173EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
•added 2024/01/08 1:20 p.m.•3 views

CVE-2024-21644 pyLoad unauthenticated flask configuration leakage

pyLoad is the free and open-source Download Manager written in pure Python. Any unauthenticated user can browse to a specific URL to expose the Flask config, including the SECRETKEY variable. This issue has been patched in version 0.5.0b3.dev77...

7.5CVSS7.5AI score0.42173EPSS
Exploits1References2
Cvelist
Cvelist
•added 2024/01/08 1:20 p.m.•33 views

CVE-2024-21644 pyLoad unauthenticated flask configuration leakage

pyLoad is the free and open-source Download Manager written in pure Python. Any unauthenticated user can browse to a specific URL to expose the Flask config, including the SECRETKEY variable. This issue has been patched in version 0.5.0b3.dev77...

7.5CVSS7.7AI score0.42173EPSS
Exploits1References2
Circl
Circl
•added 2024/01/06 12:59 a.m.•7 views

CVE-2024-21644

creationtimestamp| type| source ---|---|--- 2024-01-06 00:59:22+00:00| published-proof-of-concept| https://github.com/pyload/pyload/security/advisories/GHSA-mqpq-2p68-46fv 2024-01-08 15:26:33+00:00| seen| https://t.me/ctinow/164401 2024-01-25 11:36:52+00:00| seen| https://t.me/ctinow/173387...

7.5CVSS7.1AI score0.42173EPSS
Exploits1References20
Rows per page
Query Builder