CNNVD-202508-289 Information
Aug 05, 2025
cve
CNNVD ID
CNNVD-202508-289
Related CVE
- CNNVD Published: 2025-08-05
Description (Chinese)
pyLoad是pyLoad开源的一个用 Python 编写的免费开源下载管理器。 pyLoad 0.5.0b3.dev89及之前版本存在安全漏洞,该漏洞源于路径遍历漏洞,可能导致任意文件写入和远程代码执行。
Description (English)
PyLoad is a free open source download manager by Python. There is a security gap in the pyLoad 0.5.b3.dev89 and earlier versions, which stems from a loophole in the path, which may lead to the writing of any file and remote code execution.
Hazard Level
Low
Vulnerability Type
其他
Affected Vendor
pyLoad
Published
2025-08-05
Last Modified
2026-02-24
References
https://github.com/pyload/pyload/security/advisories/GHSA-48rp-jc79-2264 https://github.com/pyload/pyload/commit/70a44fe02c03bce92337b5d370d2a45caa4de3d4 https://github.com/pyload/pyload/pull/4596 https://access.redhat.com/security/cve/cve-2025-54802