Количество 3
Количество 3
CVE-2024-21645
pyLoad is the free and open-source Download Manager written in pure Python. A log injection vulnerability was identified in `pyload` allowing any unauthenticated actor to inject arbitrary messages into the logs gathered by `pyload`. Forged or otherwise, corrupted log files can be used to cover an attacker’s tracks or even to implicate another party in the commission of a malicious act. This vulnerability has been patched in version 0.5.0b3.dev77.
CVE-2024-21645
pyLoad is the free and open-source Download Manager written in pure Py ...
GHSA-ghmw-rwh8-6qmr
pyload Log Injection vulnerability
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-21645 pyLoad is the free and open-source Download Manager written in pure Python. A log injection vulnerability was identified in `pyload` allowing any unauthenticated actor to inject arbitrary messages into the logs gathered by `pyload`. Forged or otherwise, corrupted log files can be used to cover an attacker’s tracks or even to implicate another party in the commission of a malicious act. This vulnerability has been patched in version 0.5.0b3.dev77. | CVSS3: 5.3 | 73% Высокий | около 2 лет назад |
| CVE-2024-21645 pyLoad is the free and open-source Download Manager written in pure Py ... | CVSS3: 5.3 | 73% Высокий | около 2 лет назад |
| GHSA-ghmw-rwh8-6qmr pyload Log Injection vulnerability | CVSS3: 5.3 | 73% Высокий | около 2 лет назад |
Уязвимостей на страницу