Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2026/04/18 12:5 a.m.3 views

CVE-2026-40349 Authenticated Movary User Can Self-Escalate to Administrator via PUT /settings/users/{userId} by Setting isAdmin=true

Movary is a self hosted web app to track and rate a user's watched movies. Prior to version 0.71.1, an ordinary authenticated user can escalate their own account to administrator by sending isAdmin=true to PUT /settings/users/userId for their own user ID. The endpoint is intended to let a user ed...

8.8CVSS5.8AI score0.0053EPSS
Exploits1References4
CVE
CVE
added 2026/04/18 12:1 a.m.31 views

CVE-2026-40348

Movary contains an authenticated SSRF vulnerability present before version 0.71.1. An ordinary authenticated user can trigger server-side requests by sending a user-controlled URL to POST /settings/jellyfin/server-url-verify, which appends /system/info/public and causes the server to issue a requ...

7.7CVSS5.8AI score0.00379EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2026/01/19 6:35 p.m.18 views

CVE-2026-23841

CVE-2026-23841 — Movary, a web app for tracking movie history, is vulnerable to cross-site scripting due to insufficient input validation in the vulnerable parameter ?categoryCreated=. Affected: Movary versions prior to 0.70.0. Impact: ability to trigger XSS payloads (high risk per citations). Fi...

9.3CVSS5AI score0.00222EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2025/10/30 5:39 p.m.5 views

EUVD-2025-37040

Movary is a web application to track, rate and explore your movie watch history. Versions up to and including 0.68.0 use the HTTP Referer header value directly for redirects in multiple settings endpoints, allowing a crafted link to cause an open redirect to an attacker-controlled site and...

5.1CVSS6.1AI score0.00233EPSS
Exploits1References3
Rows per page
Query Builder