52 matches found
CVE-2026-31804
Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Prior to version 2.17.0, the /pmsimageproxy endpoint accepts a user-supplied img parameter and forwards it to Plex Media Server's /photo/:/ transcode transcoder without authentication and without restricting the scheme...
CVE-2026-31804
Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Prior to version 2.17.0, the /pmsimageproxy endpoint accepts a user-supplied img parameter and forwards it to Plex Media Server's /photo/:/ transcode transcoder without authentication and without restricting the scheme...
EUVD-2026-17190
Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Prior to version 2.17.0, the /pmsimageproxy endpoint accepts a user-supplied img parameter and forwards it to Plex Media Server's /photo/:/ transcode transcoder without authentication and without restricting the scheme...
EUVD-2013-0258
Malware in sbrugna...
EUVD-2024-29201
Malicious code in bioql PyPI...
EUVD-2025-25923
Malicious code in bioql PyPI...
CVE-2025-58209
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in rtCamp Transcoder transcoder allows Stored XSS.This issue affects Transcoder: from n/a through = 1.4.0...
CVE-2025-58209
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in rtCamp Transcoder transcoder allows Stored XSS.This issue affects Transcoder: from n/a through = 1.4.0...
CVE-2025-58209 WordPress Transcoder Plugin <= 1.4.0 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in rtCamp Transcoder transcoder allows Stored XSS.This issue affects Transcoder: from n/a through = 1.4.0...
CVE-2025-58209 WordPress Transcoder Plugin <= 1.4.0 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in rtCamp Transcoder transcoder allows Stored XSS.This issue affects Transcoder: from n/a through = 1.4.0...
CVE-2025-58209
CVE-2025-58209 affects rtCamp Transcoder (versions
PT-2025-34921 · Rtcamp · Rtcamp Transcoder
Name of the Vulnerable Software and Affected Versions: rtCamp Transcoder versions through 1.4.0 Description: rtCamp Transcoder is susceptible to a Stored Cross-Site Scripting XSS issue due to improper neutralization of input during web page generation. Recommendations: Update rtCamp Transcoder to...
WordPress plugin Transcoder 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
CVE-2024-31305
Cross-Site Request Forgery CSRF vulnerability in rtCamp Transcoder.This issue affects Transcoder: from n/a through 1.3.5...
CVE-2013-0224
The Video module 7.x-2.x before 7.x-2.9 for Drupal, when using the FFmpeg transcoder, allows local users to execute arbitrary PHP code by modifying a temporary PHP file...
Malicious code in scheme-latin-1-transcoder (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0a7f07dcb389459e63b870f8bbac4884e86ab4b5b5e1b33fcbc42c6cdf5d91d4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
SUSE-SU-2024:4054-1 Security update for javapackages-tools, xmlgraphics-batik, xmlgraphics-commons, xmlgraphics-fop
This update for javapackages-tools, xmlgraphics-batik, xmlgraphics-commons, xmlgraphics-fop fixes the following issues: xmlgraphics-fop was updated from version 2.8 to 2.10: - Security issues fixed: CVE-2024-28168: Fixed improper restriction of XML External Entity XXE reference bsc1231428 -...
CVE-2024-31305
Cross-Site Request Forgery CSRF vulnerability in rtCamp Transcoder.This issue affects Transcoder: from n/a through 1.3.5...
CVE-2024-31305 WordPress Transcoder plugin <= 1.3.5 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in rtCamp Transcoder.This issue affects Transcoder: from n/a through 1.3.5...
CVE-2024-31305
CVE-2024-31305 describes a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin rtCamp Transcoder, affecting Transcoder versions from n/a up to 1.3.5. The connected documents identify the root cause as a CSRF flaw in that component and indicate the affected range, but do not pr...