CNNVD-202601-2986 Information
CNNVD ID
CNNVD-202601-2986
Related CVE
- CNNVD Published: 2026-01-19
Description (Chinese)
MyTube是Peifan Li个人开发者的一个视频自托管下载器和播放器。 MyTube 1.7.71之前版本存在安全漏洞,该漏洞源于通过X-Forwarded-For标头欺骗可绕过速率限制,可能导致未经验证的攻击者绕过基于IP的速率限制,造成拒绝服务。
Description (English)
MyTube is a video self-hosted downloader and player for Peifan Li personal developer. There was a security loophole in MyTube 1.7.71, which arose out of fraud through the X-Forwarded-For beacon that could circumvent speed limits, which could lead to uncertified assailants circumventing IP-based speed limits and result in denial of services.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
个人开发者
Published
2026-01-19
Last Modified
2026-02-24
References
https://github.com/franklioxygen/MyTube/commit/bc057458804ae7ac70ea00605680512ed3d4257b https://github.com/franklioxygen/MyTube/security/advisories/GHSA-59gr-529g-x45h https://access.redhat.com/security/cve/cve-2026-23848
Patch
https://github.com/franklioxygen/MyTube/tags
Share on: