Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 9:55 a.m.10 views

CVE-2024-28192

yourspotify is an open source, self hosted Spotify tracking dashboard. YourSpotify version 1.8.0 is vulnerable to NoSQL injection in the public access token processing logic. Attackers can fully bypass the public token authentication mechanism, regardless if a public token has been generated befo...

5.3CVSS7.3AI score0.00603EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/03/13 8:15 p.m.18 views

CVE-2024-28192 NoSQL Injection Leading to Authentication Bypass in your_spotify

yourspotify is an open source, self hosted Spotify tracking dashboard. YourSpotify version 1.8.0 is vulnerable to NoSQL injection in the public access token processing logic. Attackers can fully bypass the public token authentication mechanism, regardless if a public token has been generated befo...

5.3CVSS7.5AI score0.00603EPSS
Exploits1References1
CVE
CVE
added 2024/03/13 8:15 p.m.38 views

CVE-2024-28192

The CVE-2024-28192 entry concerns YourSpotify, an open source self-hosted Spotify tracking dashboard. A NoSQL injection flaw exists in the public access token processing logic for versions before 1.8.0, allowing an attacker to fully bypass the public token authentication mechanism without user in...

5.3CVSS5.5AI score0.00603EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2024/03/13 8:15 p.m.30 views

CVE-2024-28192 NoSQL Injection Leading to Authentication Bypass in your_spotify

yourspotify is an open source, self hosted Spotify tracking dashboard. YourSpotify version 1.8.0 is vulnerable to NoSQL injection in the public access token processing logic. Attackers can fully bypass the public token authentication mechanism, regardless if a public token has been generated befo...

5.3CVSS5.8AI score0.00603EPSS
Exploits1References1
Rows per page
Query Builder