CVE-2023-4167

A vulnerability was found in Media Browser Emby Server 4.7.13.0 and classified as problematic. This issue affects some unknown processing of the file /web/. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may b...

EUVD-2021-12711

Malware in sbrugna...

EUVD-2021-12710

Malware in sbrugna...

EUVD-2022-38942

Malicious code in bioql PyPI...

CVE-2023-33193

Emby Server is a user-installable home media server which stores and organizes a user's media files of virtually any format and makes them available for viewing at home and abroad on a broad range of client devices. This vulnerability may allow administrative access to an Emby Server system,...

CVE-2021-25827

Emby Server 4.7.12.0 is vulnerable to a login bypass attack by setting the X-Forwarded-For header to a local IP-address...

CVE-2021-25828

Emby Server versions 4.6.0.50 is vulnerable to Cross Site Scripting XSS vulnerability via a crafted GET request to /web...

PT-2023-12078 · Emby · Emby Server

Name of the Vulnerable Software and Affected Versions: Emby Server versions prior to 4.7.12.0 Description: The issue allows for a login bypass attack by setting the X-Forwarded-For header to a local IP address. This enables unauthorized access without proper credentials. Recommendations: For...

CVE-2022-36223

In Emby Server 4.6.7.0, the playlist name field is vulnerable to XSS stored where it is possible to steal the administrator access token and flip or steal the media server administrator account...