Lucene search
K

5 matches found

NVD
NVD
added 2025/11/06 10:15 p.m.9 views

CVE-2025-64178

Jellysweep is a cleanup tool for the Jellyfin media server. In versions 0.12.1 and below, /api/images/cache, used to download media posters from the server, accepted a URL parameter that was directly passed to the cache package, which downloaded the poster from this URL. This URL parameter can be...

8.9CVSS0.00289EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/06 9:46 p.m.5 views

EUVD-2025-37862

Jellysweep is a cleanup tool for the Jellyfin media server. In versions 0.12.1 and below, /api/images/cache, used to download media posters from the server, accepted a URL parameter that was directly passed to the cache package, which downloaded the poster from this URL. This URL parameter can be...

8.9CVSS6.2AI score0.00289EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/11/06 12:0 a.m.7 views

Jellysweep 代码问题漏洞

Jellysweep is a smart cleanup tool for media servers by Jonah Personal Developer. A code issue vulnerability exists in Jellysweep 0.12.1 and prior versions, which stems from an unvalidated URL parameter in the /api/images/cache endpoint that could result in the download of arbitrary content...

8.9CVSS6.8AI score0.00289EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.13 views

EUVD-2017-6489

Malware in sbrugna...

4.3CVSS4.7AI score0.04946EPSS
Exploits4References5
OSV
OSV
added 2017/10/13 4:29 p.m.5 views

CVE-2017-15014

OpenText Documentum Content Server formerly EMC Documentum Content Server through 7.3 contains the following design gap, which allows authenticated users to download arbitrary content files regardless of the attacker's repository permissions: When an authenticated user uploads content to the...

4.3CVSS5.9AI score0.04946EPSS
Exploits4References3
Rows per page
Query Builder