Lucene search
K

5 matches found

NVD
NVD
added 2025/12/27 12:15 a.m.6 views

CVE-2025-66203

StreamVault is a video download integration solution. Prior to version 251126, a Remote Code Execution RCE vulnerability exists in the stream-vault application SpiritApplication. The application allows administrators to configure yt-dlp arguments via the /admin/api/saveConfig endpoint without...

9.9CVSS0.00671EPSS
Exploits1References2
OSV
OSV
added 2025/12/26 11:37 p.m.4 views

CVE-2025-66203 StreamVault is Vulnerable to Authenticated Remote Code Execution (RCE) via ytdlpargs Configuration Injection

StreamVault is a video download integration solution. Prior to version 251126, a Remote Code Execution RCE vulnerability exists in the stream-vault application SpiritApplication. The application allows administrators to configure yt-dlp arguments via the /admin/api/saveConfig endpoint without...

9.9CVSS7.5AI score0.00671EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/12/26 11:37 p.m.23 views

CVE-2025-66203 StreamVault is Vulnerable to Authenticated Remote Code Execution (RCE) via ytdlpargs Configuration Injection

StreamVault is a video download integration solution. Prior to version 251126, a Remote Code Execution RCE vulnerability exists in the stream-vault application SpiritApplication. The application allows administrators to configure yt-dlp arguments via the /admin/api/saveConfig endpoint without...

9.9CVSS0.00671EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/12/26 11:37 p.m.2 views

CVE-2025-66203 StreamVault is Vulnerable to Authenticated Remote Code Execution (RCE) via ytdlpargs Configuration Injection

StreamVault is a video download integration solution. Prior to version 251126, a Remote Code Execution RCE vulnerability exists in the stream-vault application SpiritApplication. The application allows administrators to configure yt-dlp arguments via the /admin/api/saveConfig endpoint without...

9.9CVSS7.1AI score0.00671EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/12/26 12:0 a.m.8 views

PT-2025-53607

Name of the Vulnerable Software and Affected Versions StreamVault versions prior to 251126 Description StreamVault is a video download integration solution. A Remote Code Execution RCE issue exists in the stream-vault application SpiritApplication. The application does not properly validate...

9.9CVSS7.3AI score0.00671EPSS
Exploits1References14
Rows per page
Query Builder