CVE-2026-55404 | yt-dlp up to 2026.7.3 Shortcut Files .desktop webpage_url/filename injection
A vulnerability described as critical has been identified in yt-dlp up to 2026.7.3. This vulnerability affects unknown code of the file .desktop of the component Shortcut Files. The manipulation of the argument webpage_url/filename results in injection.
This vulnerability is reported as CVE-2026-55404. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More