Lucene search
+L

4 matches found

Cvelist
Cvelist
added 2025/07/28 7:53 p.m.16 views

CVE-2025-54423 copyparty has a DOM-Based XSS vulnerability when displaying multimedia metadata

copyparty is a portable file server. In versions up to and including versions 1.18.4, an unauthenticated attacker is able to execute arbitrary JavaScript code in a victim's browser due to improper sanitization of multimedia tags in music files, including m3u files. This is fixed in version 1.18.5...

5.4CVSS0.00395EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/07/28 7:53 p.m.5 views

CVE-2025-54423 copyparty has a DOM-Based XSS vulnerability when displaying multimedia metadata

copyparty is a portable file server. In versions up to and including versions 1.18.4, an unauthenticated attacker is able to execute arbitrary JavaScript code in a victim's browser due to improper sanitization of multimedia tags in music files, including m3u files. This is fixed in version 1.18.5...

5.4CVSS7.1AI score0.00395EPSS
Exploits1References3
OSV
OSV
added 2025/07/28 4:41 p.m.9 views

GHSA-9Q4R-X2HJ-JMVR copyparty has DOM-Based XSS vulnerability when displaying multimedia metadata

Summary An unauthenticated attacker is able to execute arbitrary JavaScript code in a victim's browser due to improper sanitization of multimedia tags in music files, including m3u files. Details Multimedia metadata is rendered in the web-app without sanitization. This can be exploited in two way...

5.4CVSS7.1AI score0.00395EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2025/07/28 4:41 p.m.10 views

copyparty has DOM-Based XSS vulnerability when displaying multimedia metadata

Summary An unauthenticated attacker is able to execute arbitrary JavaScript code in a victim's browser due to improper sanitization of multimedia tags in music files, including m3u files. Details Multimedia metadata is rendered in the web-app without sanitization. This can be exploited in two way...

6.1CVSS7.1AI score0.00395EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder