VYPR

Moneyprinterturbo

by Harry0703

CVEs (6)

  • CVE-2025-11607MedOct 11, 2025
    risk 0.41cvss 6.3epss 0.00

    A weakness has been identified in harry0703 MoneyPrinterTurbo up to 1.2.6. The impacted element is the function upload_music of the file app/controllers/v1/music.py of the component API Endpoint. Executing a manipulation of the argument File can lead to path traversal. The…

  • CVE-2025-10472Sep 15, 2025
    risk 0.00cvss epss 0.01

    A vulnerability has been found in harry0703 MoneyPrinterTurbo up to 1.2.6. The impacted element is the function download_video/stream_video of the file app/controllers/v1/video.py of the component URL Handler. The manipulation of the argument file_path leads to path traversal.…

  • CVE-2025-49089Sep 15, 2025
    risk 0.00cvss epss 0.00

    wangxutech MoneyPrinterTurbo 1.2.6 allows path traversal via /api/v1/download/ URIs such as /api/v1/download//etc/passwd.

  • CVE-2025-7897Jul 20, 2025
    risk 0.00cvss epss 0.01

    A vulnerability was found in harry0703 MoneyPrinterTurbo up to 1.2.6 and classified as critical. Affected by this issue is the function verify_token of the file app/controllers/base.py of the component API Endpoint. The manipulation leads to missing authentication. The attack…

  • CVE-2025-7896Jul 20, 2025
    risk 0.00cvss epss 0.00

    A vulnerability has been found in harry0703 MoneyPrinterTurbo up to 1.2.6 and classified as critical. Affected by this vulnerability is the function download_video/delete_video of the file app/controllers/v1/video.py. The manipulation leads to path traversal. The attack can be…

  • CVE-2025-7895Jul 20, 2025
    risk 0.00cvss epss 0.00

    A vulnerability, which was classified as critical, was found in harry0703 MoneyPrinterTurbo up to 1.2.6. Affected is the function upload_bgm_file of the file app/controllers/v1/video.py of the component File Extension Handler. The manipulation of the argument File leads to…