Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2024-24808

Опубликовано: 06 фев. 2024
Источник: debian

Описание

pyLoad is an open-source Download Manager written in pure Python. There is an open redirect vulnerability due to incorrect validation of input values when redirecting users after login. pyLoad is validating URLs via the `get_redirect_url` function when redirecting users at login. This vulnerability has been patched with commit fe94451.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
pyloaditppackage

Связанные уязвимости

nvd логотип

CVE-2024-24808

CVSS3: 4.7
nvd
около 2 лет назад

pyLoad is an open-source Download Manager written in pure Python. There is an open redirect vulnerability due to incorrect validation of input values when redirecting users after login. pyLoad is validating URLs via the `get_redirect_url` function when redirecting users at login. This vulnerability has been patched with commit fe94451.

github логотип

GHSA-g3cm-qg2v-2hj5

CVSS3: 6.1
github
около 2 лет назад

pyLoad open redirect vulnerability due to improper validation of the is_safe_url function