Lucene search

Owncast Project Security Vulnerabilities

cve

CVE-2021-39183

Owncast is an open source, self-hosted live video streaming and chat server. In affected versions inline scripts are executed when Javascript is parsed via a paste action. This issue is patched in 0.0.9 by blocking unsafe-inline Content Security Policy and specifying the script-src. The worker-src ...

8.2CVSS

6AI Score

0.001EPSS

2021-12-14 08:15 PM

cve

CVE-2022-3751

SQL Injection in GitHub repository owncast/owncast prior to 0.0.13.

9.8CVSS

9.8AI Score

0.002EPSS

2022-11-29 09:15 PM

cve

CVE-2023-3188

Server-Side Request Forgery (SSRF) in GitHub repository owncast/owncast prior to 0.1.0.

6.5CVSS

6.8AI Score

0.001EPSS

2023-06-10 02:15 AM

106

cve

CVE-2023-46480

An issue in OwnCast v.0.1.1 allows a remote attacker to execute arbitrary code and obtain sensitive information via the authHost parameter of the indieauth function.

9.8CVSS

9.5AI Score

0.002EPSS

2023-11-27 11:15 PM