26 matches found
PYSEC-2026-357 internetarchive Vulnerable to Directory Traversal in File.download()
Impact What kind of vulnerability is it? This is a Critical severity directory traversal path traversal vulnerability in the File.download method of the internetarchive library. Who is impacted? All users of the internetarchive library versions 5.5.1 are impacted. The vulnerability is particularl...
Ubuntu: Security Advisory (USN-7989-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DSA-6035-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 6035-1] python-internetarchive security update
------------------------------------------------------------------------- Debian Security Advisory DSA-6035-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 23, 2025 https://www.debian.org/security/faq -...
Debian dsa-6035 : internetarchive - security update
The remote Debian 12 / 13 host has packages installed that are affected by a vulnerability as referenced in the dsa-6035 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6035-1 [email protected] https://www.debian.org/security/...
EUVD-2025-27084
Malicious code in bioql PyPI...
Debian dla-4314 : internetarchive - security update
The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4314 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4314-1 [email protected] https://www.debian.org/lts/security/...
Debian: Security Advisory (DLA-4314-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
DLA-4314-1 python-internetarchive - security update
Bulletin has no description...
[SECURITY] [DLA 4314-1] python-internetarchive security update
Debian LTS Advisory DLA-4314-1 [email protected] https://www.debian.org/lts/security/ Daniel Leidert September 30, 2025 https://wiki.debian.org/LTS Package : python-internetarchive Version : 1.9.9-1+deb11u1 CVE ID : CVE-2025-58438 Debian Bug : 1114635 A vulnerability has been discovered...
CVE-2025-58438
internetarchive is a Python and Command-Line Interface to Archive.org In versions 5.5.0 and below, there is a directory traversal path traversal vulnerability in the File.download method of the internetarchive library. The file.download method does not properly sanitize user-supplied filenames or...
Linux Distros Unpatched Vulnerability : CVE-2025-58438
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - internetarchive is a Python and Command-Line Interface to Archive.org In versions 5.5.0 and below, there is a directory traversal path traversal vulnerability i...
wikiteam3 (>=4.4.3 <=4.4.7) potentially affected by CVE-2025-58438 via internetarchive (=5.4.1)
internetarchive PYPI version =5.4.1 is affected by a known vulnerability. The following packages have a transitive dependency on internetarchive and may be impacted: - wikiteam3 =4.4.3, =4.4.7 Source cves: CVE-2025-58438 Source advisory: SNYK:PYTHON-INTERNETARCHIVE-12549189...
CVE-2025-58438
internetarchive is a Python and Command-Line Interface to Archive.org In versions 5.5.0 and below, there is a directory traversal path traversal vulnerability in the File.download method of the internetarchive library. The file.download method does not properly sanitize user-supplied filenames or...
DEBIAN-CVE-2025-58438
internetarchive is a Python and Command-Line Interface to Archive.org In versions 5.5.0 and below, there is a directory traversal path traversal vulnerability in the File.download method of the internetarchive library. The file.download method does not properly sanitize user-supplied filenames or...
UBUNTU-CVE-2025-58438
internetarchive is a Python and Command-Line Interface to Archive.org In versions 5.5.0 and below, there is a directory traversal path traversal vulnerability in the File.download method of the internetarchive library. The file.download method does not properly sanitize user-supplied filenames or...
CVE-2025-58438 internetarchive is vulnerable to Directory Traversal through file downloads
internetarchive is a Python and Command-Line Interface to Archive.org In versions 5.5.0 and below, there is a directory traversal path traversal vulnerability in the File.download method of the internetarchive library. The file.download method does not properly sanitize user-supplied filenames or...
CVE-2025-58438
internetarchive is a Python and Command-Line Interface to Archive.org In versions 5.5.0 and below, there is a directory traversal path traversal vulnerability in the File.download method of the internetarchive library. The file.download method does not properly sanitize user-supplied filenames or...
CVE-2025-58438 internetarchive is vulnerable to Directory Traversal through file downloads
internetarchive is a Python and Command-Line Interface to Archive.org In versions 5.5.0 and below, there is a directory traversal path traversal vulnerability in the File.download method of the internetarchive library. The file.download method does not properly sanitize user-supplied filenames or...
CVE-2025-58438 internetarchive is vulnerable to Directory Traversal through file downloads
internetarchive is a Python and Command-Line Interface to Archive.org In versions 5.5.0 and below, there is a directory traversal path traversal vulnerability in the File.download method of the internetarchive library. The file.download method does not properly sanitize user-supplied filenames or...