A vulnerability was found in Media Browser Emby Server 4.7.13.0 and classified as problematic. This issue affects some unknown processing of the file /web/. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be....
6.1CVSS
6.1AI Score
0.001EPSS
Emby Server versions < 4.6.0.50 is vulnerable to Cross Site Scripting (XSS) vulnerability via a crafted GET request to...
6.1CVSS
5.8AI Score
0.0005EPSS
Emby Server < 4.7.12.0 is vulnerable to a login bypass attack by setting the X-Forwarded-For header to a local...
9.8CVSS
9AI Score
0.001EPSS
In Emby Server 4.6.7.0, the playlist name field is vulnerable to XSS stored where it is possible to steal the administrator access token and flip or steal the media server administrator...
6.1CVSS
5.8AI Score
0.001EPSS
9.8CVSS
9.4AI Score
0.145EPSS