CVE-2025-61773 pyLoad CNL and captcha handlers allow code Injection via unsanitized parameters

pyLoad is a free and open-source download manager written in Python. In versions prior to 0.5.0b3.dev91, pyLoad web interface contained insufficient input validation in both the Captcha script endpoint and the Click'N'Load CNL Blueprint. This flaw allowed untrusted user input to be processed...

CVE-2025-61773 pyLoad CNL and captcha handlers allow code Injection via unsanitized parameters

pyLoad is a free and open-source download manager written in Python. In versions prior to 0.5.0b3.dev91, pyLoad web interface contained insufficient input validation in both the Captcha script endpoint and the Click'N'Load CNL Blueprint. This flaw allowed untrusted user input to be processed...

EUVD-2025-33353

pyLoad is a free and open-source download manager written in Python. In versions prior to 0.5.0b3.dev91, pyLoad web interface contained insufficient input validation in both the Captcha script endpoint and the Click'N'Load CNL Blueprint. This flaw allowed untrusted user input to be processed...

GHSA-CJJF-27CC-PVMV pyLoad CNL and captcha handlers allow Code Injection via unsanitized parameters

Summary pyLoad web interface contained insufficient input validation in both the Captcha script endpoint and the Click'N'Load CNL Blueprint. This flaw allowed untrusted user input to be processed unsafely, which could be exploited by an attacker to inject arbitrary content into the web UI or...

pyLoad CNL and captcha handlers allow Code Injection via unsanitized parameters

Summary pyLoad web interface contained insufficient input validation in both the Captcha script endpoint and the Click'N'Load CNL Blueprint. This flaw allowed untrusted user input to be processed unsafely, which could be exploited by an attacker to inject arbitrary content into the web UI or...

Cross-site Scripting (XSS)

Overview pyload-ng is a The free and open-source Download Manager written in pure Python Affected versions of this package are vulnerable to Cross-site Scripting XSS via unsanitized parameters in the cnlblueprint.py. An attacker can execute arbitrary JavaScript code in the context of a user's...

PT-2025-41449

Name of the Vulnerable Software and Affected Versions pyLoad versions prior to 0.5.0b3.dev91 Description pyLoad is a free and open-source download manager written in Python. Versions prior to 0.5.0b3.dev91 have insufficient input validation in the web interface, specifically in the Captcha script...

pyLoad 安全漏洞

pyLoad is a free and open source download manager written in Python by pyLoad Open Source. A security vulnerability exists in pyLoad versions prior to 0.5.0b3.dev91, which stems from insufficient input validation in the Captcha script endpoint and Click N Load Blueprint, and could lead to...

CVE-2025-61773

creationtimestamp| type| source ---|---|--- 2025-10-08 23:26:16+00:00| published-proof-of-concept| https://github.com/pyload/pyload/security/advisories/GHSA-cjjf-27cc-pvmv...

EUVD-2023-0366

Malicious code in bioql PyPI...

EUVD-2024-3149

Malicious code in bioql PyPI...

EUVD-2024-0155

Malicious code in bioql PyPI...

EUVD-2023-0548

Malicious code in bioql PyPI...

EUVD-2023-0485

Malicious code in bioql PyPI...

EUVD-2025-23574

Malicious code in bioql PyPI...

EUVD-2025-29437

Malicious code in bioql PyPI...

EUVD-2023-2971

Malicious code in bioql PyPI...

EUVD-2025-21406

Malicious code in bioql PyPI...

EUVD-2023-0416

Malicious code in bioql PyPI...

EUVD-2023-0572

Malicious code in bioql PyPI...