Package impact
PIP / pyload-ng
| CVE | Severity | CVSS | Risk | Published | Description | Impact |
|---|---|---|---|---|---|---|
| CVE-2026-42313 | high | 8.3 | 8.3 | 16d ago | pyLoad is a free and open-source download manager written in Python. Prior to 0.5.0b3.dev100, the set_config_value() API method (@permission(Perms.SETTINGS)) in src/pyload/core/api/__init__.py gates … | |
| CVE-2026-45348 | high | — | 8.0 | 13d ago | pyLoad is vulnerable to stored XSS in Downloads view via unsanitized link URL in packages.js template literal |