CVE-2024-21645

CVSS V2 None CVSS V3 None
Description
pyLoad is the free and open-source Download Manager written in pure Python. A log injection vulnerability was identified in `pyload` allowing any unauthenticated actor to inject arbitrary messages into the logs gathered by `pyload`. Forged or otherwise, corrupted log files can be used to cover an attacker’s tracks or even to implicate another party in the commission of a malicious act. This vulnerability has been patched in version 0.5.0b3.dev77.
Overview
  • CVE ID
  • CVE-2024-21645
  • Assigner
  • GitHub_M
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-01-08T13:20:47.181Z
  • Last Modified Date
  • 2024-01-08T13:20:47.181Z
History
Created Old Value New Value Data Type Notes
2024-06-26 15:26:50 Added to TrackCVE