pyLoad Unauthenticated Traceback Disclosure Vulnerability in WebUI

A vulnerability in pyLoad WebUI prior to version 0.5.0b3.dev100 allows for unauthenticated users to access full Python traceback details on unhandled exceptions. The issue arises because the template-rendering route is accessible without authentication and can be manipulated to trigger server exceptions, such as by requesting a non-existent template. This results in the internal stack traces being exposed in the HTTP response, disclosing implementation details that could aid in exploiting other vulnerabilities.

Impact

This vulnerability leads to unauthorized information disclosure, allowing attackers to access internal error details, including stack traces and source paths, which could be used to map application internals and enhance the reliability of exploits in follow-on attacks.

Reproduction

The vulnerability can be reproduced by sending a request to the unauthenticated template-rendering route '/web/<path:filename>' with an attacker-controlled template name, such as a non-existent template. This will trigger a server exception, which is not handled properly, allowing the internal traceback to be included in the HTTP response.

Remediation

Users are advised to update to pyLoad version 0.5.0b3.dev100 or later.