CVE-2026-50019
- EPSS 0.27%
- Veröffentlicht 23.06.2026 16:13:26
- Zuletzt bearbeitet 26.06.2026 20:12:44
yt-dlp is a command-line audio/video downloader. From 2023.09.24 until 2026.06.09, if curl is used as an external downloader for yt-dlp, cookies may be leaked to an unintended host upon HTTP redirect or when the host for download fragments differs fr...
CVE-2026-50574
- EPSS 0.41%
- Veröffentlicht 23.06.2026 16:09:18
- Zuletzt bearbeitet 26.06.2026 20:11:40
yt-dlp is a command-line audio/video downloader. Prior to 2026.06.09, if aria2c is used as an external downloader for a fragmented manifest format (such as an HLS/DASH stream), yt-dlp passes insufficiently sanitized input to aria2c that allows an att...
CVE-2026-50023
- EPSS 0.56%
- Veröffentlicht 23.06.2026 16:08:43
- Zuletzt bearbeitet 26.06.2026 20:12:25
yt-dlp is a command-line audio/video downloader. Prior to 2026.06.09, a vulnerability exists in yt-dlp that allows a remote attacker to write arbitrary OS-shortcut files (such as .desktop, .url, .webloc) to the user's filesystem, bypassing the remedi...
CVE-2026-26331
- EPSS 1.6%
- Veröffentlicht 24.02.2026 02:23:40
- Zuletzt bearbeitet 25.02.2026 19:32:30
yt-dlp is a command-line audio/video downloader. Starting in version 2023.06.21 and prior to version 2026.02.21, when yt-dlp's `--netrc-cmd` command-line option (or `netrc_cmd` Python API parameter) is used, an attacker could achieve arbitrary comman...
CVE-2025-54072
- EPSS 0.56%
- Veröffentlicht 22.07.2025 21:34:43
- Zuletzt bearbeitet 09.10.2025 15:59:25
yt-dlp is a feature-rich command-line audio/video downloader. In versions 2025.06.25 and below, when the --exec option is used on Windows with the default placeholder (or {}), insufficient sanitization is applied to the expanded filepath, allowing fo...
CVE-2024-38519
- EPSS 0.32%
- Veröffentlicht 02.07.2024 14:15:13
- Zuletzt bearbeitet 15.04.2026 00:35:42
`yt-dlp` and `youtube-dl` are command-line audio/video downloaders. Prior to the fixed versions, `yt-dlp` and `youtube-dl` do not limit the extensions of downloaded files, which could lead to arbitrary filenames being created in the download folder (...
CVE-2024-3566
- EPSS 6.88%
- Veröffentlicht 10.04.2024 16:15:16
- Zuletzt bearbeitet 15.05.2026 15:03:11
A command inject vulnerability allows an attacker to perform command injection on Windows applications that indirectly depend on the CreateProcess function when the specific conditions are satisfied.
CVE-2024-22423
- EPSS 1.25%
- Veröffentlicht 09.04.2024 18:15:08
- Zuletzt bearbeitet 05.01.2026 15:56:33
yt-dlp is a youtube-dl fork with additional features and fixes. The patch that addressed CVE-2023-40581 attempted to prevent RCE when using `--exec` with `%q` by replacing double quotes with two double quotes. However, this escaping is not sufficient...
CVE-2023-46121
- EPSS 0.32%
- Veröffentlicht 15.11.2023 00:15:09
- Zuletzt bearbeitet 21.11.2024 08:27:55
yt-dlp is a youtube-dl fork with additional features and fixes. The Generic Extractor in yt-dlp is vulnerable to an attacker setting an arbitrary proxy for a request to an arbitrary url, allowing the attacker to MITM the request made from yt-dlp's HT...
CVE-2023-40581
- EPSS 1.29%
- Veröffentlicht 25.09.2023 19:15:09
- Zuletzt bearbeitet 21.11.2024 08:19:45
yt-dlp is a youtube-dl fork with additional features and fixes. yt-dlp allows the user to provide shell command lines to be executed at various stages in its download steps through the `--exec` flag. This flag allows output template expansion in its ...