Jellyfin up to v10.7.7 exists to contain a Server-Side Request Forgery (SSRF) via the component /Repositories. This vulnerability allows malicious users to access network resources and sensitive information via a crafted POST request.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jellyfin jellyfin |