pyLoad 0.5.0 is vulnerable to Unrestricted File Upload.
Advisories
Source ID Title
EUVD EUVD EUVD-2023-2971 pyLoad 0.5.0 is vulnerable to Unrestricted File Upload.
Github GHSA Github GHSA GHSA-h73m-pcfw-25h2 Download to arbitrary folder can lead to RCE
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Tue, 03 Jun 2025 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2025-06-03T14:39:20.831Z

Reserved: 2023-11-13T00:00:00.000Z

Link: CVE-2023-47890

cve-icon Vulnrichment

Updated: 2024-08-02T21:16:43.988Z

cve-icon NVD

Status : Modified

Published: 2024-01-08T20:15:44.453

Modified: 2025-06-03T15:15:43.023

Link: CVE-2023-47890

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.