{ "affected": [ { "database_specific": { "unresolved_ranges": [ { "events": [ { "introduced": "0" }, { "last_affected": "0.5.0-beta1" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "0.5.0-beta2" } ] } ] }, "ranges": [ { "database_specific": { "versions": [ { "introduced": "0" }, { "last_affected": "0.4.9" } ] }, "events": [ { "introduced": "0" }, { "last_affected": "903127a5d9c390a750b1ad68b86e7635693ba4e9" }, { "fixed": "a2b1eb1028f45ac58dea5f58593c1d3db2b4a104" } ], "repo": "https://github.com/pyload/pyload", "type": "GIT" } ] } ], "database_specific": { "cna_assigner": "@huntrdev", "cwe_ids": [ "CWE-20" ], "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/0xxx/CVE-2023-0434.json" }, "details": "Improper Input Validation in GitHub repository pyload/pyload prior to 0.5.0b3.dev40.", "id": "CVE-2023-0434", "modified": "2026-04-01T23:07:46.629302284Z", "published": "2023-01-22T00:00:00Z", "references": [ { "type": "WEB", "url": "https://huntr.dev/bounties/7d9332d8-6997-483b-9fb9-bcf2ae01dad4" }, { "type": "ADVISORY", "url": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/0xxx/CVE-2023-0434.json" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0434" }, { "type": "FIX", "url": "https://github.com/pyload/pyload/commit/a2b1eb1028f45ac58dea5f58593c1d3db2b4a104" } ], "schema_version": "1.7.3", "severity": [ { "score": "CVSS:3.0/AV:P/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:H", "type": "CVSS_V3" } ], "summary": "Improper Input Validation in pyload/pyload" }