Moderate severityNVD Advisory· Published Feb 6, 2024· Updated May 9, 2025
pyLoad open redirect vulnerability due to improper validation of the is_safe_url function
CVE-2024-24808
Description
pyLoad is an open-source Download Manager written in pure Python. There is an open redirect vulnerability due to incorrect validation of input values when redirecting users after login. pyLoad is validating URLs via the get_redirect_url function when redirecting users at login. This vulnerability has been patched with commit fe94451.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
pyload-ngPyPI | < 0.5.0b3.dev79 | 0.5.0b3.dev79 |
Affected products
2Patches
Vulnerability mechanics
References
4- github.com/advisories/GHSA-g3cm-qg2v-2hj5ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2024-24808ghsaADVISORY
- github.com/pyload/pyload/commit/fe94451dcc2be90b3889e2fd9d07b483c8a6dccdghsax_refsource_MISCWEB
- github.com/pyload/pyload/security/advisories/GHSA-g3cm-qg2v-2hj5ghsax_refsource_CONFIRMWEB
News mentions
0No linked articles in our index yet.