Security: yt-dlp/yt-dlp
Security
No security policy detected
This project has not set up a SECURITY.md file yet.
Report a vulnerability-
Dependency on potentially malicious third-party code in Douyu extractorsGHSA-3v33-3wmw-3785 published
Jul 7, 2024 by bashonlyLow -
File system modification and RCE through improper file-extension sanitizationGHSA-79w7-vh3h-8g4j published
Jul 1, 2024 by bashonlyHigh -
`--exec` command injection when using `%q` in yt-dlp on Windows (CVE-2023-40581 bypass)GHSA-hjq6-52gw-2g7p published
Apr 9, 2024 by Grub4KHigh -
Generic Extractor MITM Vulnerability via Arbitrary Proxy InjectionGHSA-3ch3-jhc6-5r8x published
Nov 14, 2023 by Grub4KModerate -
`--exec` command injection when using `%q` in yt-dlp on WindowsGHSA-42h4-v29r-42qg published
Sep 24, 2023 by coletdjnzHigh -
File Downloader cookie leak in yt-dlpGHSA-v8mc-9377-rwjj published
Jul 6, 2023 by coletdjnzModerate
Learn more about advisories related to yt-dlp/yt-dlp in the GitHub Advisory Database