Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/04/09 7:23 p.m.6 views

CVE-2026-35455

immich is a high performance self-hosted photo and video management solution. Prior to 2.7.0, sStored Cross-Site Scripting XSS in the 360° panorama viewer allows any authenticated user to execute arbitrary JavaScript in the browser of any other user who views the malicious panorama with the OCR...

7.3CVSS6.1AI score0.00225EPSS
Exploits1References1
NVD
NVD
added 2026/04/08 7:25 p.m.8 views

CVE-2026-35455

immich is a high performance self-hosted photo and video management solution. Prior to 2.7.0, sStored Cross-Site Scripting XSS in the 360° panorama viewer allows any authenticated user to execute arbitrary JavaScript in the browser of any other user who views the malicious panorama with the OCR...

7.3CVSS0.00225EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/04/08 6:31 p.m.23 views

CVE-2026-35455 immich has Stored XSS via OCR Text in 360° Panorama Viewer

immich is a high performance self-hosted photo and video management solution. Prior to 2.7.0, sStored Cross-Site Scripting XSS in the 360° panorama viewer allows any authenticated user to execute arbitrary JavaScript in the browser of any other user who views the malicious panorama with the OCR...

7.3CVSS0.00225EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/04/08 12:0 a.m.14 views

immich 跨站脚本漏洞

immich is a high-performance, open-source, self-hosted solution for managing photos and videos. Versions of immich prior to 2.7.0 contained a cross-site scripting vulnerability. This vulnerability stemmed from a stored-cross-site scripting flaw within the 360-degree panorama viewer, which could...

7.3CVSS5.8AI score0.00225EPSS
Exploits1References1
Rows per page
Query Builder