Lucene search
+L

26 matches found

osv
osv
added 2026/06/29 11:50 a.m.7 views

PYSEC-2026-357 internetarchive Vulnerable to Directory Traversal in File.download()

Impact What kind of vulnerability is it? This is a Critical severity directory traversal path traversal vulnerability in the File.download method of the internetarchive library. Who is impacted? All users of the internetarchive library versions 5.5.1 are impacted. The vulnerability is particularl...

9.4CVSS6AI score0.01402EPSS
Exploits0References8
openvas
openvas
added 2026/02/04 12:0 a.m.3 views

Ubuntu: Security Advisory (USN-7989-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.4CVSS5.4AI score0.01402EPSS
Exploits0References2
openvas
openvas
added 2025/10/24 12:0 a.m.5 views

Debian: Security Advisory (DSA-6035-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.4CVSS6.8AI score0.01402EPSS
Exploits0References2
debian
debian
added 2025/10/23 7:7 p.m.13 views

[SECURITY] [DSA 6035-1] python-internetarchive security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6035-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 23, 2025 https://www.debian.org/security/faq -...

9.4CVSS6.6AI score0.01402EPSS
Exploits0
nessus
nessus
added 2025/10/23 12:0 a.m.6 views

Debian dsa-6035 : internetarchive - security update

The remote Debian 12 / 13 host has packages installed that are affected by a vulnerability as referenced in the dsa-6035 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6035-1 [email protected] https://www.debian.org/security/...

9.4CVSS5.5AI score0.01402EPSS
Exploits0References5
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-27084

Malicious code in bioql PyPI...

9.4CVSS6.3AI score0.01402EPSS
Exploits0References3
nessus
nessus
added 2025/09/30 12:0 a.m.5 views

Debian dla-4314 : internetarchive - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4314 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4314-1 [email protected] https://www.debian.org/lts/security/...

9.4CVSS5.5AI score0.01402EPSS
Exploits0References4
openvas
openvas
added 2025/09/30 12:0 a.m.5 views

Debian: Security Advisory (DLA-4314-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.4CVSS6.8AI score0.01402EPSS
Exploits0References2
osv
osv
added 2025/09/30 12:0 a.m.4 views

DLA-4314-1 python-internetarchive - security update

Bulletin has no description...

9.4CVSS7AI score0.01402EPSS
Exploits0
debian
debian
added 2025/09/29 11:4 p.m.9 views

[SECURITY] [DLA 4314-1] python-internetarchive security update

Debian LTS Advisory DLA-4314-1 [email protected] https://www.debian.org/lts/security/ Daniel Leidert September 30, 2025 https://wiki.debian.org/LTS Package : python-internetarchive Version : 1.9.9-1+deb11u1 CVE ID : CVE-2025-58438 Debian Bug : 1114635 A vulnerability has been discovered...

9.4CVSS5.7AI score0.01402EPSS
Exploits0
redhatcve
redhatcve
added 2025/09/08 7:14 p.m.8 views

CVE-2025-58438

internetarchive is a Python and Command-Line Interface to Archive.org In versions 5.5.0 and below, there is a directory traversal path traversal vulnerability in the File.download method of the internetarchive library. The file.download method does not properly sanitize user-supplied filenames or...

9.4CVSS7.8AI score0.01402EPSS
Exploits0References1
nessus
nessus
added 2025/09/07 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-58438

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - internetarchive is a Python and Command-Line Interface to Archive.org In versions 5.5.0 and below, there is a directory traversal path traversal vulnerability i...

9.4CVSS6AI score0.01402EPSS
Exploits0References2
vulnersosv
vulnersosv
added 2025/09/06 7:42 p.m.6 views

wikiteam3 (>=4.4.3 <=4.4.7) potentially affected by CVE-2025-58438 via internetarchive (=5.4.1)

internetarchive PYPI version =5.4.1 is affected by a known vulnerability. The following packages have a transitive dependency on internetarchive and may be impacted: - wikiteam3 =4.4.3, =4.4.7 Source cves: CVE-2025-58438 Source advisory: SNYK:PYTHON-INTERNETARCHIVE-12549189...

9.4CVSS5.8AI score0.01402EPSS
Exploits0
nvd
nvd
added 2025/09/06 7:15 p.m.5 views

CVE-2025-58438

internetarchive is a Python and Command-Line Interface to Archive.org In versions 5.5.0 and below, there is a directory traversal path traversal vulnerability in the File.download method of the internetarchive library. The file.download method does not properly sanitize user-supplied filenames or...

9.4CVSS0.01402EPSS
Exploits0References4
osv
osv
added 2025/09/06 7:15 p.m.4 views

DEBIAN-CVE-2025-58438

internetarchive is a Python and Command-Line Interface to Archive.org In versions 5.5.0 and below, there is a directory traversal path traversal vulnerability in the File.download method of the internetarchive library. The file.download method does not properly sanitize user-supplied filenames or...

9.4CVSS5.8AI score0.01402EPSS
Exploits0References1
osv
osv
added 2025/09/06 7:15 p.m.6 views

UBUNTU-CVE-2025-58438

internetarchive is a Python and Command-Line Interface to Archive.org In versions 5.5.0 and below, there is a directory traversal path traversal vulnerability in the File.download method of the internetarchive library. The file.download method does not properly sanitize user-supplied filenames or...

9.4CVSS6AI score0.01402EPSS
Exploits0References6
vulnrichment
vulnrichment
added 2025/09/06 6:45 p.m.3 views

CVE-2025-58438 internetarchive is vulnerable to Directory Traversal through file downloads

internetarchive is a Python and Command-Line Interface to Archive.org In versions 5.5.0 and below, there is a directory traversal path traversal vulnerability in the File.download method of the internetarchive library. The file.download method does not properly sanitize user-supplied filenames or...

9.4CVSS7.3AI score0.01402EPSS
Exploits0References3
debiancve
debiancve
added 2025/09/06 6:45 p.m.5 views

CVE-2025-58438

internetarchive is a Python and Command-Line Interface to Archive.org In versions 5.5.0 and below, there is a directory traversal path traversal vulnerability in the File.download method of the internetarchive library. The file.download method does not properly sanitize user-supplied filenames or...

9.4CVSS5.8AI score0.01402EPSS
Exploits0
cvelist
cvelist
added 2025/09/06 6:45 p.m.11 views

CVE-2025-58438 internetarchive is vulnerable to Directory Traversal through file downloads

internetarchive is a Python and Command-Line Interface to Archive.org In versions 5.5.0 and below, there is a directory traversal path traversal vulnerability in the File.download method of the internetarchive library. The file.download method does not properly sanitize user-supplied filenames or...

9.4CVSS0.01402EPSS
Exploits0References3
osv
osv
added 2025/09/06 6:45 p.m.5 views

CVE-2025-58438 internetarchive is vulnerable to Directory Traversal through file downloads

internetarchive is a Python and Command-Line Interface to Archive.org In versions 5.5.0 and below, there is a directory traversal path traversal vulnerability in the File.download method of the internetarchive library. The file.download method does not properly sanitize user-supplied filenames or...

9.4CVSS7.3AI score0.01402EPSS
Exploits0References6
Rows per page
Query Builder