Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 2:48 a.m.11 views

CVE-2023-50258

Medusa is an automatic video library manager for TV shows. Versions prior to 1.0.19 are vulnerable to unauthenticated blind server-side request forgery SSRF. The testDiscord request handler in medusa/server/web/home/handler.py does not validate the user-controlled discordwebhook variable and pass...

5.3CVSS7AI score0.00693EPSS
Exploits1References1
Cvelist
Cvelist
added 2023/12/22 4:55 p.m.31 views

CVE-2023-50258 Blind SSRF in `/home/testdiscord` endpoint

Medusa is an automatic video library manager for TV shows. Versions prior to 1.0.19 are vulnerable to unauthenticated blind server-side request forgery SSRF. The testDiscord request handler in medusa/server/web/home/handler.py does not validate the user-controlled discordwebhook variable and pass...

5.3CVSS5.7AI score0.00693EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2023/12/22 4:55 p.m.5 views

CVE-2023-50258 Blind SSRF in `/home/testdiscord` endpoint

Medusa is an automatic video library manager for TV shows. Versions prior to 1.0.19 are vulnerable to unauthenticated blind server-side request forgery SSRF. The testDiscord request handler in medusa/server/web/home/handler.py does not validate the user-controlled discordwebhook variable and pass...

5.3CVSS5.5AI score0.00693EPSS
Exploits1References5
CVE
CVE
added 2023/12/22 4:55 p.m.35 views

CVE-2023-50258

Summary (CVE-2023-50258): Medusa is an open-source video library manager. Versions prior to 1.0.19 are vulnerable to an unauthenticated blind server-side request forgery (SSRF) in the testDiscord handler. The issue stems from not validating the user-controlled discord_webhook variable and passing...

5.3CVSS5.4AI score0.00693EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder