ez-pyload (>=1.0.0 <=1.0.4) potentially affected by CVE-2026-45348 via pyload-ng (=0.5.0b3.dev99)

pyload-ng PYPI version =0.5.0b3.dev99 is affected by a known vulnerability. The following packages have a transitive dependency on pyload-ng and may be impacted: - ez-pyload =1.0.0, =1.0.4 Source cves: CVE-2026-45348 Source advisory: OSV:GHSA-FCJQ-435V-JX94...

PT-2025-29530 · Pyload · Pyload

Name of the Vulnerable Software and Affected Versions: pyload versions prior to 0.5.0b3.dev89 Description: pyload is an open-source Download Manager written in pure Python. An unsafe JavaScript evaluation vulnerability in pyLoad’s CAPTCHA processing code allows unauthenticated remote attackers to...