Lucene search
K

5 matches found

OSV
OSV
added 2024/10/28 12:23 p.m.14 views

GHSA-W7HQ-F2PJ-C53G pyLoad vulnerable to remote code execution by download to /.pyload/scripts using /flashgot API

Summary The folder /.pyload/scripts has scripts which are run when certain actions are completed, for e.g. a download is finished. By downloading a executable file to a folder in /scripts and performing the respective action, remote code execution can be achieved. A file can be downloaded to such...

9.4CVSS6.7AI score0.00679EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2024/10/28 12:23 p.m.46 views

pyLoad vulnerable to remote code execution by download to /.pyload/scripts using /flashgot API

Summary The folder /.pyload/scripts has scripts which are run when certain actions are completed, for e.g. a download is finished. By downloading a executable file to a folder in /scripts and performing the respective action, remote code execution can be achieved. A file can be downloaded to such...

9.1CVSS6.7AI score0.00679EPSS
Exploits1References5Affected Software1
PyPA
PyPA
added 2024/10/25 11:15 p.m.10 views

PYSEC-2024-302

pyLoad is a free and open-source Download Manager. The folder /.pyload/scripts has scripts which are run when certain actions are completed, for e.g. a download is finished. By downloading a executable file to a folder in /scripts and performing the respective action, remote code execution can be...

9.1CVSS6.7AI score0.00679EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2024/10/25 10:48 p.m.3 views

CVE-2024-47821 pyLoad vulnerable to remote code execution by download to /.pyload/scripts using /flashgot API

pyLoad is a free and open-source Download Manager. The folder /.pyload/scripts has scripts which are run when certain actions are completed, for e.g. a download is finished. By downloading a executable file to a folder in /scripts and performing the respective action, remote code execution can be...

9.1CVSS8.5AI score0.00679EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2024/10/25 10:48 p.m.19 views

CVE-2024-47821 pyLoad vulnerable to remote code execution by download to /.pyload/scripts using /flashgot API

pyLoad is a free and open-source Download Manager. The folder /.pyload/scripts has scripts which are run when certain actions are completed, for e.g. a download is finished. By downloading a executable file to a folder in /scripts and performing the respective action, remote code execution can be...

9.1CVSS8.3AI score0.00679EPSS
Exploits1References1
Rows per page
Query Builder