CNNVD-202510-1635 Information

CNNVD ID

CNNVD-202510-1635

Related CVE

CVE-2025-62363

• CNNVD Published: 2025-10-13

Description (Chinese)

YtGrabber-TUI是Женя Бородин个人开发者的一个软件的界面。 YtGrabber-TUI 1.0-rc之前版本存在后置链接漏洞，该漏洞源于可配置路径指向恶意代码，可能导致执行任意代码。

Description (English)

YtGrabber-TUI is an interface for a software that’s fast-tracking and givin’ me a personal developer. The previous version of YtGrabber-TUI 1.0-rc had a backlink loophole, which stemmed from the configuration path pointing to malicious codes, which could lead to the implementation of any code.

Hazard Level

High

Vulnerability Type

后置链接

Affected Vendor

个人开发者

Published

2025-10-13

Last Modified

2026-02-24

References

https://github.com/zheny-creator/YtGrabber-TUI/commit/7adfdb68e8bf24559d1e9d8d4668de3d82c45591 https://github.com/zheny-creator/YtGrabber-TUI/security/advisories/GHSA-94c4-wh57-8p9c https://access.redhat.com/security/cve/cve-2025-62363

Patch

https://github.com/zheny-creator/YtGrabber-TUI/releases