8 matches found
CVE-2020-26948
Emby Server before 4.5.0 allows SSRF via the Items/RemoteSearch/Image ImageURL parameter...
Emby SSRF HTTP Scanner
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Emby SSRF HTTP Scanner', 'Description' = 'Generates a GET request to the provided web servers and executes an SSRF against the targeted EMBY...
Metasploit Wrap-Up
I'm very Emby-ous Community contributor btnz-k has authored a new Emby Version Scanner module consisting of both an exploit and a scanner for the SSRF vulnerability found in Emby. Emby is a previously open source media server designed to organize, play, and stream audio and video to a variety of...
Emby Version Scanner
This module attempts to identify the version of an Emby Media Server running on a host. If you wish to see all the information available, set VERBOSE to true. Use in conjunction with embyssrfscanner to locate devices vulnerable to CVE-2020-26948. Module Options msf use...
CVE-2020-26948
creationtimestamp| type| source ---|---|--- 2020-10-11 00:35:57+00:00| seen| https://t.me/cibsecurity/15194 2021-06-12 19:27:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/embyversionssrf.rb 2021-06-12 19:27:33+00:00| seen|...
CVE-2020-26948
Emby Server before 4.5.0 allows SSRF via the Items/RemoteSearch/Image ImageURL parameter...
CVE-2020-26948
The CVE-2020-26948 issue affects Emby Server prior to version 4.5.0. The Nuclei template confirms a server-side request forgery (SSRF) via the Items/RemoteSearch/Image ImageURL parameter. The vulnerability enables the server to make requests to internal resources, with the CVSS 3.1 vector CVSS:3....
Exploit for Server-Side Request Forgery in Emby
msfemby This tool will check a remote EMBY server to attempt...