530 matches found
CVE-2023-0227
Insufficient Session Expiration in GitHub repository pyload/pyload prior to 0.5.0b3.dev36...
Session fixation
Insufficient Session Expiration in GitHub repository pyload/pyload prior to 0.5.0b3.dev36...
CVE-2023-0227
CVE-2023-0227 covers an Insufficient Session Expiration vulnerability in the Pyload project. Affected software is the Pyload repository (pyload/pyload) with versions prior to 0.5.0b3.dev36. The root cause is insufficient session expiration management, as documented across multiple sources, with i...
CVE-2023-0227 Insufficient Session Expiration in pyload/pyload
Insufficient Session Expiration in GitHub repository pyload/pyload prior to 0.5.0b3.dev36...
PT-2023-16096
Name of the Vulnerable Software and Affected Versions pyload versions prior to 0.5.0b3.dev36 Description The issue is related to insufficient session expiration in the pyload repository. A patch is available and is anticipated to be part of version 0.5.0b3.dev36. Recommendations For versions prio...
CVE-2023-0227 Insufficient Session Expiration in pyload/pyload
Insufficient Session Expiration in GitHub repository pyload/pyload prior to 0.5.0b3.dev36...
CVE-2023-0227 Insufficient Session Expiration in pyload/pyload
Insufficient Session Expiration in GitHub repository pyload/pyload prior to 0.5.0b3.dev36...
Clickjacking
pyload-ng is vulnerable to clickjacking attacks. The vulnerability exists due to the lack of frame restrictions in init.py as it does not properly set the response header X-Frame-Options: DENY, which allows an attacker to load the website within a malicious response header...
pyload 代码问题漏洞
pyload is a free and open source download manager written in Python, designed to be extremely lightweight, easily extensible and fully manageable over the Web. A code issue vulnerability exists in versions prior to pyload/pyload 0.5.0b3.dev36, which stems from insufficient session expiration...
GHSA-H8R9-467R-VJJF pyLoad vulnerable to Improper Restriction of Rendered UI Layers or Frames
Improper Restriction of Rendered UI Layers or Frames in GitHub repository pyload/pyload prior to 0.5.0b3.dev33...
pyLoad vulnerable to Improper Restriction of Rendered UI Layers or Frames
Improper Restriction of Rendered UI Layers or Frames in GitHub repository pyload/pyload prior to 0.5.0b3.dev33...
CVE-2023-0057
Improper Restriction of Rendered UI Layers or Frames in GitHub repository pyload/pyload prior to 0.5.0b3.dev33...
Input validation
Improper Restriction of Rendered UI Layers or Frames in GitHub repository pyload/pyload prior to 0.5.0b3.dev33...
GHSA-M3G7-WRRQ-V5C8 Pyload contains Sensitive Cookie in HTTPS Session Without 'Secure' Attribute
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository pyload/pyload prior to 0.5.0b3.dev32. The Secure attribute for sensitive cookies in HTTPS sessions is not set, which could cause the user agent to send those cookies in plaintext over an HTTP session. This issue is...
Pyload contains Sensitive Cookie in HTTPS Session Without 'Secure' Attribute
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository pyload/pyload prior to 0.5.0b3.dev32. The Secure attribute for sensitive cookies in HTTPS sessions is not set, which could cause the user agent to send those cookies in plaintext over an HTTP session. This issue is...
CVE-2023-0057 Improper Restriction of Rendered UI Layers or Frames in pyload/pyload
Improper Restriction of Rendered UI Layers or Frames in GitHub repository pyload/pyload prior to 0.5.0b3.dev33...
CVE-2023-0057 Improper Restriction of Rendered UI Layers or Frames in pyload/pyload
Improper Restriction of Rendered UI Layers or Frames in GitHub repository pyload/pyload prior to 0.5.0b3.dev33...
pyload 安全漏洞
pyload is a free and open source download manager written in Python, designed to be extremely lightweight, easily extensible and fully manageable over the Web. A security vulnerability exists in pyload versions prior to 0.5.0b3.dev33, which stems from an improper restriction in its rendering UI...
CVE-2023-0057 Improper Restriction of Rendered UI Layers or Frames in pyload/pyload
Improper Restriction of Rendered UI Layers or Frames in GitHub repository pyload/pyload prior to 0.5.0b3.dev33...
CVE-2023-0057
CVE-2023-0057 affects pyload/pyload prior to 0.5.0b3.dev33. The root cause is improper restriction of rendered UI layers or frames, enabling potential clickjacking by a remote attacker. Affected versions are pre-0.5.0b3.dev33. Remediation: update to 0.5.0b3.dev33 or later; or apply a workaround t...