exploitDog

CVE-2025-55156

Опубликовано: 11 авг. 2025

Источник: nvd

EPSS Низкий

Описание

pyLoad is the free and open-source Download Manager written in pure Python. Prior to version 0.5.0b3.dev91, the parameter add_links in API /json/add_package is vulnerable to SQL Injection. Attackers can modify or delete data in the database, causing data errors or loss. This issue has been patched in version 0.5.0b3.dev91.

Ссылки

EPSS

Процентиль: 7%

0.00028

Низкий

Дефекты

CWE-89

Связанные уязвимости

CVE-2025-55156

debian

6 месяцев назад

pyLoad is the free and open-source Download Manager written in pure Py ...

GHSA-pwh4-6r3m-j2rf

github

6 месяцев назад

PyLoad vulnerable to SQL Injection via API /json/add_package in add_links parameter

EPSS

Процентиль: 7%

0.00028

Низкий

Дефекты

CWE-89