QID 996016
Date Published: 2023-11-22
QID 996016: Python (Pip) Security Update for pyload-ng (GHSA-h73m-pcfw-25h2)
A web UI user can store files anywhere on the pyLoad server and gain command execution by abusing scripts.
Successful exploitation of this vulnerability could lead to a security breach or could affect integrity, availability, and confidentiality.
Solution
Refer to Github security advisory GHSA-h73m-pcfw-25h2 for updates and patch information.
Vendor References
- GHSA-h73m-pcfw-25h2 -
github.com/advisories/GHSA-h73m-pcfw-25h2
CVEs related to QID 996016
Software Advisories
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| GHSA-h73m-pcfw-25h2 | pyload-ng |
|