Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
emby emby vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2021-25827
Emby Server < 4.7.12.0 is vulnerable to a login bypass attack by setting the X-Forwarded-For header to a local IP-address.
Emby Emby
6.1
CVSSv3
CVE-2021-25828
Emby Server versions < 4.6.0.50 is vulnerable to Cross Site Scripting (XSS) vulnerability via a crafted GET request to /web.
Emby Emby
9.8
CVSSv3
CVE-2020-26948
Emby Server prior to 4.5.0 allows SSRF via the Items/RemoteSearch/Image ImageURL parameter.
Emby Emby
1 Github repository
6.1
CVSSv3
CVE-2022-36223
In Emby Server 4.6.7.0, the playlist name field is vulnerable to XSS stored where it is possible to steal the administrator access token and flip or steal the media server administrator account.
Emby Emby 4.6.7.0
9.1
CVSSv3
CVE-2023-33193
Emby Server is a user-installable home media server which stores and organizes a user's media files of virtually any format and makes them available for viewing at home and abroad on a broad range of client devices. This vulnerability may allow administrative access to an Em...
Emby Emby.releases
8.6
CVSSv3
CVE-2021-32833
Emby Server is a personal media server with apps on many devices. In Emby Server on Windows there is a set of arbitrary file read vulnerabilities. This vulnerability is known to exist in version 4.6.4.0 and may not be patched in later versions. Known vulnerable routes are /Videos...
Emby Emby.releases
6.1
CVSSv3
CVE-2023-4167
A vulnerability was found in Media Browser Emby Server 4.7.13.0 and classified as problematic. This issue affects some unknown processing of the file /web/. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the...
Emby Emby.releases 4.7.13.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started