In Tautulli 2.1.9, CSRF in the /shutdown URI allows an malicious user to shut down the remote media server. (Also, anonymous access can be achieved in applications that do not have a user login area).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
tautulli tautulli 2.1.9 |