Lucene search
K

4 matches found

EUVD
EUVD
added 2026/04/13 9:30 p.m.4 views

EUVD-2026-22118

A vulnerability was determined in aandrew-me ytDownloader up to 3.20.2. This affects the function childprocess.exec of the file src/compressor.js of the component Compressor Feature. This manipulation causes command injection. The attack can only be executed locally. The exploit has been publicly...

5.3CVSS5.4AI score0.00683EPSS
Exploits0References7
NVD
NVD
added 2026/04/13 9:16 p.m.6 views

CVE-2026-6219

A vulnerability was determined in aandrew-me ytDownloader up to 3.20.2. This affects the function childprocess.exec of the file src/compressor.js of the component Compressor Feature. This manipulation causes command injection. The attack can only be executed locally. The exploit has been publicly...

5.3CVSS0.00683EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/04/13 8:45 p.m.5 views

CVE-2026-6219 aandrew-me ytDownloader Compressor Feature compressor.js child_process.exec command injection

A vulnerability was determined in aandrew-me ytDownloader up to 3.20.2. This affects the function childprocess.exec of the file src/compressor.js of the component Compressor Feature. This manipulation causes command injection. The attack can only be executed locally. The exploit has been publicly...

5.3CVSS5.4AI score0.00683EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/04/13 12:0 a.m.7 views

ytDownloader 命令注入漏洞

ytDownloader is a multi-platform audio and video download tool developed by Andrew. Versions of ytDownloader 3.20.2 and earlier had a command injection vulnerability, which originated from the function childprocess.exec in the Compressor Feature component’s file src/compressor.js...

5.3CVSS6.1AI score0.00683EPSS
Exploits0References7
Rows per page
Query Builder