2 matches found
CVE-2024-28196
CVE-2024-28196 affects YourSpotify (self-hosted Spotify tracking dashboard). The issue arises in versions
CVE-2024-28196 Clickjacking in your_spotify
yourspotify is an open source, self hosted Spotify tracking dashboard. YourSpotify version 1.9.0 does not prevent other pages from displaying it in an iframe and is thus vulnerable to clickjacking. Clickjacking can be used to trick an existing user of YourSpotify to trigger actions, such as...