Denial of Service Vulnerability in pyLoad Download Manager
CVE-2025-57751

7.7HIGH

Key Information:

Vendor: Pyload
Status: Pyload
Vendor: CVE Published:; 21 August 2025

What is CVE-2025-57751?

The pyLoad Download Manager, an open-source tool developed in Python, is susceptible to a denial-of-service vulnerability. This issue arises from inadequate validation of the 'jk' parameter received via the CNL Blueprint. As a consequence, user-provided input is allowed to execute directly, leading to potential server CPU saturation and unresponsiveness of the web interface. A patched version addressing this flaw is available in release 0.5.0b3.dev92.

Affected Version(s)

pyload < 0.5.0b3.dev92

References

https://github.com/pyload/pyload/security/advisories/GHSA...

x_refsource_CONFIRM

CVSS V4

Score:

7.7

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Timeline

Vulnerability published
Aug 21, 2025
Vulnerability Reserved
Aug 19, 2025

JSON

Pyload

What is CVE-2025-57751?

Affected Version(s)

References

CVSS V4

Timeline