Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Tenable Nessus
Tenable Nessusadded 2023/11/19 12:0 a.m.17 views

openSUSE 15 Security Update : yt-dlp (openSUSE-SU-2023:0374-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2023:0374-1 advisory. - yt-dlp is a command-line program to download videos from video sites. During file downloads, yt-dlp or the external downloaders that yt-dlp...

8.2CVSS6.6AI score0.00902EPSS
Exploits0References7
Tenable Nessus
Tenable Nessusadded 2023/07/09 12:0 a.m.18 views

Fedora 38 : yt-dlp (2023-9f3938e10d)

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-9f3938e10d advisory. Update to 2023.07.06. Mitigates CVE-2023-35934 / GHSA-v8mc-9377-rwjj Tenable has extracted the preceding description block directly from the Fedora security...

8.2CVSS7.7AI score0.00902EPSS
Exploits0References2
OSV
OSVadded 2023/07/06 8:15 p.m.1 views

UBUNTU-CVE-2023-35934

yt-dlp is a command-line program to download videos from video sites. During file downloads, yt-dlp or the external downloaders that yt-dlp employs may leak cookies on HTTP redirects to a different host, or leak them when the host for download fragments differs from their parent manifest's host...

8.2CVSS5.7AI score0.00902EPSS
Exploits0References8
CVE
CVEadded 2023/07/06 7:39 p.m.81 views

CVE-2023-35934

CVE-2023-35934 affects yt-dlp prior to 2023.07.06 and nightly 2023.07.06.185519. The issue: during file downloads, yt-dlp or its external downloaders may leak cookies by sending them as a Cookie header, including in the info JSON, causing cookies to be sent to domains/paths not scoped. All native...

8.2CVSS7AI score0.00902EPSS
Exploits0References10Affected Software3
Cvelist
Cvelistadded 2023/07/06 7:39 p.m.39 views

CVE-2023-35934 yt-dlp File Downloader cookie leak

yt-dlp is a command-line program to download videos from video sites. During file downloads, yt-dlp or the external downloaders that yt-dlp employs may leak cookies on HTTP redirects to a different host, or leak them when the host for download fragments differs from their parent manifest's host...

6.1CVSS8.4AI score0.00902EPSS
Exploits0References10
OSV
OSVadded 2023/07/06 7:39 p.m.17 views

CVE-2023-35934 yt-dlp File Downloader cookie leak

yt-dlp is a command-line program to download videos from video sites. During file downloads, yt-dlp or the external downloaders that yt-dlp employs may leak cookies on HTTP redirects to a different host, or leak them when the host for download fragments differs from their parent manifest's host...

6.1CVSS8.1AI score0.00902EPSS
Exploits0References12
UbuntuCve
UbuntuCveadded 2023/07/06 12:0 a.m.18 views

CVE-2023-35934

yt-dlp is a command-line program to download videos from video sites. During file downloads, yt-dlp or the external downloaders that yt-dlp employs may leak cookies on HTTP redirects to a different host, or leak them when the host for download fragments differs from their parent manifest's host...

8.2CVSS7AI score0.00902EPSS
Exploits0References7
Rows per page
Query Builder