Description
Ampache is a web based audio/video streaming application and file manager. Prior to version 6.6.0, the Democratic Playlist Name is vulnerable to a stored cross-site scripting. Version 6.6.0 fixes this issue.
References
https://github.com/ampache/ampache/security/advisories/GHSA-f99r-gv34-v46f
ExploitVendor Advisory
CVSS impact metrics
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
4.8 · Medium
CVSS V3.1
CVSS V3.0
CVSS V2.0
Information
Source identifier
Vulnerability status
Analyzed
Published
2024-09-27T14:15:04.833
2 weeks agoLast modified
2024-10-04T18:19:26.240
1 week ago