VYPR

yt-dlp

by Debian

CVEs (1)

  • CVE-2026-55404Jul 11, 2026
    risk 0.00cvss epss

    yt-dlp and youtube-dl are command-line audio/video downloaders. Prior to 2026.7.4, the --write-link, --write-url-link, and --write-desktop-link options can write .url or .desktop shortcut files using attacker-controlled webpage_url or filename metadata without sufficient…