Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-20876

Malware in sbrugna...

6.1CVSS6.3AI score0.00675EPSS
Exploits1References2
CNVD
CNVD
added 2018/09/26 12:0 a.m.2 views

Subsonic Media Server Cross-Site Scripting Vulnerability

Subsonic Media Server is a media file hosting platform. A cross-site scripting vulnerability in the podcast subscription form in Subsonic Media Server version 6.1.1 can be exploited by a remote attacker by sending the 'add' parameter to the podcastReceiverAdmin.view file to manipulate a user's...

6.1CVSS6.1AI score0.00675EPSS
Exploits1References1
NVD
NVD
added 2018/09/21 4:29 p.m.16 views

CVE-2018-9282

An XSS issue was discovered in Subsonic Media Server 6.1.1. The podcast subscription form is affected by a stored XSS vulnerability in the add parameter to podcastReceiverAdmin.view; no administrator access is required. By injecting a JavaScript payload, this flaw could be used to manipulate a...

6.1CVSS5.9AI score0.00675EPSS
Exploits1References1
OSV
OSV
added 2018/09/21 4:29 p.m.4 views

CVE-2018-9282

An XSS issue was discovered in Subsonic Media Server 6.1.1. The podcast subscription form is affected by a stored XSS vulnerability in the add parameter to podcastReceiverAdmin.view; no administrator access is required. By injecting a JavaScript payload, this flaw could be used to manipulate a...

6.1CVSS5.8AI score0.00675EPSS
Exploits1References1
Prion
Prion
added 2018/09/21 4:29 p.m.16 views

Cross site scripting

An XSS issue was discovered in Subsonic Media Server 6.1.1. The podcast subscription form is affected by a stored XSS vulnerability in the add parameter to podcastReceiverAdmin.view; no administrator access is required. By injecting a JavaScript payload, this flaw could be used to manipulate a...

4.3CVSS5.8AI score0.00675EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2018/09/21 4:0 p.m.17 views

CVE-2018-9282

An XSS issue was discovered in Subsonic Media Server 6.1.1. The podcast subscription form is affected by a stored XSS vulnerability in the add parameter to podcastReceiverAdmin.view; no administrator access is required. By injecting a JavaScript payload, this flaw could be used to manipulate a...

5.9AI score0.00675EPSS
Exploits1References1
CVE
CVE
added 2018/09/21 4:0 p.m.61 views

CVE-2018-9282

CVE-2018-9282 concerns a stored XSS vulnerability in Subsonic Media Server 6.1.1. The issue affects the podcast subscription form via the add parameter to podcastReceiverAdmin.view, allowing an attacker to inject JavaScript without needing administrator access. This could be used to manipulate a ...

6.1CVSS5.8AI score0.00675EPSS
Exploits1References1Affected Software1
0day.today
0day.today
added 2017/06/05 12:0 a.m.76 views

Subsonic 6.1.1 - Cross-Site Request Forgery Vulnerability

Exploit for windows platform in category web applications + Credits: John Page a.k.a hyp3rlinx Vendor: ================ www.subsonic.org Product: =============== subsonic v6.1.1 Subsonic is a media streaming server. You install it on your own computer where you keep your music or video collection...

5.1CVSS7.5AI score0.02478EPSS
Exploits5
0day.today
0day.today
added 2017/06/05 12:0 a.m.50 views

Subsonic 6.1.1 - XML External Entity Injection Vulnerability

Exploit for windows platform in category local exploits + Credits: John Page a.k.a hyp3rlinx Vendor: ================ www.subsonic.org Product: =============== subsonic v6.1.1 Subsonic is a media streaming server. You install it on your own computer where you keep your music or video collection...

4.3CVSS7.4AI score0.26906EPSS
Exploits5
0day.today
0day.today
added 2017/06/05 12:0 a.m.43 views

Subsonic 6.1.1 - Cross-Site Request Forgery / Cross-Site Scripting Vulnerabilities

Exploit for windows platform in category web applications + Credits: John Page a.k.a hyp3rlinx Vendor: ================ www.subsonic.org Product: =============== subsonic v6.1.1 Subsonic is a media streaming server. You install it on your own computer where you keep your music or video collection...

8.7AI score0.15676EPSS
Exploits5
Rows per page
Query Builder