CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

119 matches found

CVE-2019-25726

All in One Video Downloader 1.2 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the id parameter. Attackers can send requests to the admin interface with UNION-based SQL injection payloads in the id...

8.8CVSS

Exploits0References5

Cvelist•added 8 hours ago•3 views

CVE-2019-25726 All in One Video Downloader 1.2 SQL Injection via admin page-edit

8.8CVSS

Exploits0References5

Positive Technologies•added 21 hours ago•5 views

PT-2026-46196

8.8CVSS6.1AI score

Exploits0References6

Fedora•added 2026/03/05 5:6 p.m.•7 views

[SECURITY] Fedora 44 Update: yt-dlp-2026.02.21-1.fc44

yt-dlp is a command-line program to download videos from many different online video platforms, such as youtube.com. The project is a fork of youtube-dl with additional features and fixes...

8.8CVSS5.9AI score0.00218EPSS

Exploits2

Fedora•added 2026/03/05 1:13 a.m.•6 views

[SECURITY] Fedora 42 Update: yt-dlp-2026.02.21-1.fc42

yt-dlp is a command-line program to download videos from many different online video platforms, such as youtube.com. The project is a fork of youtube-dl with additional features and fixes...

8.8CVSS5.9AI score0.00218EPSS

Exploits2

Fedora•added 2026/02/25 12:53 a.m.•5 views

[SECURITY] Fedora 43 Update: yt-dlp-2026.02.21-1.fc43

yt-dlp is a command-line program to download videos from many different online video platforms, such as youtube.com. The project is a fork of youtube-dl with additional features and fixes...

8.8CVSS5.9AI score0.00218EPSS

Exploits2

RedhatCVE•added 2026/01/26 3:10 p.m.•3 views

CVE-2026-24139

MyTube is a self-hosted downloader and player for several video websites. Versions 1.7.78 and below do not safeguard against authorization bypass, allowing guest users to download the complete application database. The application fails to properly validate user permissions on the database export...

8.7CVSS5.9AI score0.00013EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 10:18 a.m.•5 views

CVE-2019-18893

XSS in the Video Downloader component before 1.5 of Avast Secure Browser 77.1.1831.91 and AVG Secure Browser 77.0.1790.77 allows websites to execute their code in the context of this component. While Video Downloader is technically a browser extension, it is granted a very wide set of privileges...

6.1CVSS6.5AI score0.00408EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 9:49 a.m.•1 views

CVE-2020-24142

Server-side request forgery in the Video Downloader for TikTok aka downloader-tiktok plugin 1.3 for WordPress lets an attacker send crafted requests from the back-end server of a vulnerable web application via the njt-tk-download-video parameter. It can help identify open ports, local network hos...

9.8CVSS7AI score0.00706EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:48 a.m.•7 views

CVE-2020-24143

Directory traversal in the Video Downloader for TikTok aka downloader-tiktok plugin 1.3 for WordPress lets an attacker get access to files that are stored outside the web root folder via the njt-tk-download-video parameter...

7.5CVSS6.8AI score0.00913EPSS

Exploits0References1

RedhatCVE•added 2025/10/14 9:49 p.m.•5 views

CVE-2025-62363

yt-grabber-tui is a terminal user interface application for downloading videos. In versions before 1.0-rc, the application allows users to configure the path to the yt-dlp executable via the pathtoytdlp configuration setting. An attacker with write access to the configuration file or the filesyst...

7.8CVSS7.1AI score0.00032EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2014-6849

Malware in sbrugna...

5.4CVSS6.4AI score0.00134EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-16878

Malware in sbrugna...

9.8CVSS9.2AI score0.00706EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•0 views

EUVD-2018-2084

Malware in sbrugna...

6.1CVSS6.1AI score0.00223EPSS

Exploits9References2

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2019-8575

Malware in sbrugna...

6.1CVSS6.3AI score0.00408EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-16879

Malware in sbrugna...

7.5CVSS7.5AI score0.00913EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2025-22381

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.00493EPSS

Exploits0References3

RedhatCVE•added 2025/05/23 7:55 a.m.•3 views

CVE-2024-42041

The com.videodownload.browser.videodownloader aka AppTool-Browser-Video All Video Downloader application 20-30.05.24 for Android allows an attacker to execute arbitrary JavaScript code via the acr.browser.lightning.DefaultBrowserActivity component...

8.1CVSS7.6AI score0.00307EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 7:47 a.m.•3 views

CVE-2024-46965

The DS allvideo.downloader.browser aka Fast Video Downloader: Browser application through 1.6-RC1 for Android allows an attacker to execute arbitrary JavaScript code via the allvideo.downloader.browser.DefaultBrowserActivity component...

5.4CVSS7.6AI score0.00181EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 6:27 a.m.•4 views

CVE-2024-46964

The com.video.downloader.all aka All Video Downloader application through 11.28 for Android allows an attacker to execute arbitrary JavaScript code via the com.video.downloader.all.StartActivity component...

8.1CVSS7.6AI score0.00239EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by