CVE-2026-40594 | pyLoad up to 0.5.0b3.dev97 __init__.py set_session_cookie_secure origin validation (GHSA-mp82-fmj6-f22v)

A vulnerability was found in pyLoad up to 0.5.0b3.dev97. It has been classified as problematic. Affected by this vulnerability is the function set_session_cookie_secure of the file src/pyload/webui/app/__init__.py. Performing a manipulation results in origin validation error.

This vulnerability is known as CVE-2026-40594. Remote exploitation of the attack is possible. No exploit is available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More