Количество 2
Количество 2
CVE-2025-54423
copyparty is a portable file server. In versions up to and including versions 1.18.4, an unauthenticated attacker is able to execute arbitrary JavaScript code in a victim's browser due to improper sanitization of multimedia tags in music files, including m3u files. This is fixed in version 1.18.5.
GHSA-9q4r-x2hj-jmvr
copyparty has DOM-Based XSS vulnerability when displaying multimedia metadata
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-54423 copyparty is a portable file server. In versions up to and including versions 1.18.4, an unauthenticated attacker is able to execute arbitrary JavaScript code in a victim's browser due to improper sanitization of multimedia tags in music files, including m3u files. This is fixed in version 1.18.5. | CVSS3: 5.4 | 0% Низкий | 7 месяцев назад |
| GHSA-9q4r-x2hj-jmvr copyparty has DOM-Based XSS vulnerability when displaying multimedia metadata | CVSS3: 5.4 | 0% Низкий | 7 месяцев назад |
Уязвимостей на страницу