Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

pypi

yt-dlp

pypi · A feature-rich command-line audio/video downloader · Repository · Package

Security Advisories for yt-dlp in pypi

Low
about 1 year ago

yt-dlp has dependency on potentially malicious third-party code in Douyu extractors GSA_kwCzR0hTQS0zdjMzLTN3bXctMzc4Nc4AA9n3

pypi yt-dlp
High
over 1 year ago

yt-dlp File system modification and RCE through improper file-extension sanitization GSA_kwCzR0hTQS03OXc3LXZoM2gtOGc0as4AA9dz

pypi yt-dlp
High
over 1 year ago

yt-dlp: `--exec` command injection when using `%q` in yt-dlp on Windows (Bypass of CVE-2023-40581) GSA_kwCzR0hTQS1oanE2LTUyZ3ctMmc3cM4AA63l

pypi yt-dlp
Moderate
almost 2 years ago

yt-dlp Generic Extractor MITM Vulnerability via Arbitrary Proxy Injection GSA_kwCzR0hTQS0zY2gzLWpoYzYtNXI4eM4AA3MJ

pypi yt-dlp
High
about 2 years ago

yt-dlp on Windows vulnerable to `--exec` command injection when using `%q` GSA_kwCzR0hTQS00Mmg0LXYyOXItNDJxZ84AA2Bw

pypi yt-dlp
Moderate
about 2 years ago

yt-dlp File Downloader cookie leak GSA_kwCzR0hTQS12OG1jLTkzNzctcndqas4AA0Xj

pypi yt-dlp

Filter by Severity

High 3 Moderate 2 Low 1