Lucene search
+L

23 matches found

PyPA
PyPA
added 2026/06/29 11:50 a.m.5 views

pyLoad allows upload to arbitrary folder lead to RCE

SummaryAn authenticated user can change the download folder and upload a crafted template to the specified folder lead to remote code execution Detailsexample version: 0.5file:src/pyload/webui/app/blueprints/[email protected]"/render/", endpoint="render"def renderfilename: mimetype =...

9.1CVSS7.5AI score0.01354EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2026/06/29 11:50 a.m.8 views

PYSEC-2026-492 pyLoad allows upload to arbitrary folder lead to RCE

Summary An authenticated user can change the download folder and upload a crafted template to the specified folder lead to remote code execution Details example version: 0.5 file:src/pyload/webui/app/blueprints/appblueprint.py python @bp.route"/render/", endpoint="render" def renderfilename:...

9.1CVSS7.5AI score0.01354EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/06/05 9:42 p.m.8 views

CVE-2026-11416

MoviePilot contains a path traversal vulnerability in the AliPan, U115, and Rclone cloud storage download handlers where the local destination path is constructed by concatenating the configured download directory with a filename taken directly from remote cloud API metadata without basename...

8.1CVSS5.6AI score0.00469EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2026/05/05 9:18 p.m.16 views

PyLoad vulnerable to Path Traversal via Package Folder Name in set_package_data

Summary No sanitization of package folder name allows writing files anywhere outside the intended download directory. Affected Component - src/pyload/core/api/init.py - Function: setpackagedata Details When passing a folder name in the setpackagedata API function call inside the data object with...

8.1CVSS5.9AI score0.00395EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/26 3:21 p.m.6 views

CVE-2026-26228 VLC for Android < 3.7.0 Remote Access Path Traversal

VideoLAN VLC for Android prior to version 3.7.0 contains a path traversal vulnerability in the Remote Access Server routing for the authenticated endpoint GET /download. The file query parameter is concatenated into a filesystem path under the configured download directory without canonicalizatio...

4.9CVSS5.5AI score0.00275EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2021-29488

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SABnzbd is an open source binary newsreader. A vulnerability was discovered in SABnzbd that could trick the filesystem.renamer function into writing downloaded...

5.3CVSS6AI score0.00919EPSS
Exploits0References2
OSV
OSV
added 2024/10/28 12:23 p.m.21 views

GHSA-W7HQ-F2PJ-C53G pyLoad vulnerable to remote code execution by download to /.pyload/scripts using /flashgot API

Summary The folder /.pyload/scripts has scripts which are run when certain actions are completed, for e.g. a download is finished. By downloading a executable file to a folder in /scripts and performing the respective action, remote code execution can be achieved. A file can be downloaded to such...

9.4CVSS6.7AI score0.00679EPSS
Exploits1References5
NVD
NVD
added 2024/09/20 9:15 p.m.15 views

CVE-2024-46649

eNMS up to 4.7.1 is vulnerable to Directory Traversal via download/folder...

7.5CVSS0.00959EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/09/20 12:0 a.m.14 views

CVE-2024-46649

eNMS up to 4.7.1 is vulnerable to Directory Traversal via download/folder...

6.9AI score0.00959EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/09/20 12:0 a.m.6 views

PT-2024-32094 · Enms · Enms

Name of the Vulnerable Software and Affected Versions: eNMS versions up to 4.7.1 Description: The issue is a Directory Traversal vulnerability, which occurs via the download/folder path. Recommendations: For versions up to 4.7.1, consider restricting access to the download/folder path as a...

7.5CVSS6.8AI score0.00959EPSS
Exploits1References8
CNNVD
CNNVD
added 2024/09/20 12:0 a.m.7 views

eNMS 安全漏洞

eNMS is a network automation platform from eNMS Open Source. A security vulnerability exists in eNMS 4.7.1 and earlier versions, which stems from vulnerability to directory traversal attacks via download/folder...

7.5CVSS6.7AI score0.00959EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/07/02 1:47 p.m.23 views

CVE-2024-38519 yt-dlp and youtube-dl vulnerable to file system modification and RCE through improper file-extension sanitization

yt-dlp and youtube-dl are command-line audio/video downloaders. Prior to the fixed versions, yt-dlp and youtube-dl do not limit the extensions of downloaded files, which could lead to arbitrary filenames being created in the download folder and path traversal on Windows. Since yt-dlp and youtube-...

7.8CVSS7.6AI score0.00322EPSS
Exploits0References8
CVE
CVE
added 2024/04/26 5:30 p.m.108 views

CVE-2024-32880

CVE-2024-32880 affects pyload, an open-source Python download manager. Multiple sources confirm an authenticated user can change the download folder and upload a crafted template to that folder, triggering remote code execution (RCE). No fix was available at publication; PoCs describe leveraging ...

9.1CVSS7.4AI score0.01354EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2024/04/26 5:30 p.m.6 views

CVE-2024-32880 pyLoad allows upload to arbitrary folder lead to RCE

pyload is an open-source Download Manager written in pure Python. An authenticated user can change the download folder and upload a crafted template to the specified folder lead to remote code execution. There is no fix available at the time of publication...

9.1CVSS8AI score0.01354EPSS
Exploits1References3
CNNVD
CNNVD
added 2024/04/26 12:0 a.m.8 views

pyload 安全漏洞

pyload is a free and open source download manager written in Python, designed to be extremely lightweight, easily extensible and fully manageable over the Web. pyload has a security vulnerability. An authenticated user could change the download folder and upload carefully crafted templates to a...

9.1CVSS7.9AI score0.01354EPSS
Exploits1References2
OSV
OSV
added 2024/04/24 9:16 p.m.78 views

GHSA-3F7W-P8VR-4V5F pyLoad allows upload to arbitrary folder lead to RCE

Summary An authenticated user can change the download folder and upload a crafted template to the specified folder lead to remote code execution Details example version: 0.5 file:src/pyload/webui/app/blueprints/appblueprint.py python @bp.route"/render/", endpoint="render" def renderfilename:...

9.1CVSS9.3AI score0.01354EPSS
Exploits1References3
OSV
OSV
added 2021/05/07 3:15 p.m.3 views

DEBIAN-CVE-2021-29488

SABnzbd is an open source binary newsreader. A vulnerability was discovered in SABnzbd that could trick the filesystem.renamer function into writing downloaded files outside the configured Download Folder via malicious PAR2 files. A patch was released as part of SABnzbd 3.2.1RC1. As a workaround,...

5.3CVSS5.6AI score0.00919EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2021/05/07 3:15 p.m.22 views

CVE-2021-29488

SABnzbd is an open source binary newsreader. A vulnerability was discovered in SABnzbd that could trick the filesystem.renamer function into writing downloaded files outside the configured Download Folder via malicious PAR2 files. A patch was released as part of SABnzbd 3.2.1RC1. As a workaround,...

5.3CVSS6.1AI score0.00919EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2021/05/07 3:0 p.m.80 views

CVE-2021-29488

SABnzbd is an open source binary newsreader. A vulnerability was discovered in SABnzbd that could trick the filesystem.renamer function into writing downloaded files outside the configured Download Folder via malicious PAR2 files. A patch was released as part of SABnzbd 3.2.1RC1. As a workaround,...

5.3CVSS5.2AI score0.00919EPSS
Exploits0
CNNVD
CNNVD
added 2021/05/07 12:0 a.m.4 views

SABnzbd 安全漏洞

sabnzbd is a software application. An open source binary news reader written in Python. SABnzbd 3.2.1RC1 suffers from a security vulnerability that stems from the ability to spoof the filessystem .renamer function to write downloaded files outside of the configured download folder via a malicious...

5.3CVSS5.7AI score0.00919EPSS
Exploits0References1
Rows per page
Query Builder