CVE-2025-7346
Application - Auth Bypass
Title source: llmDescription
Any unauthenticated attacker can bypass the localhost restrictions posed by the application and utilize this to create arbitrary packages
Scores
EPSS
0.0025
EPSS Percentile
48.4%
Classification
CWE
CWE-281
Status
draft
Affected Products (1)
pypi/pyload-ng
PyPI
Timeline
Published
Jul 08, 2025
Tracked Since
Feb 18, 2026