2 matches found
CVE-2021-25828
CVE-2021-25828 affects Emby Server prior to 4.6.0.50, with a Cross-Site Scripting (XSS) vulnerability exploitable via a crafted GET request to the /web endpoint. Root cause described in multiple sources as a reflected XSS vector; impact is limited to browser-side scripting (no server compromise d...
CVE-2021-25828
Emby Server versions 4.6.0.50 is vulnerable to Cross Site Scripting XSS vulnerability via a crafted GET request to /web...