HomePentest-Tools.com Logo

Emby Server Server-Side Request Forgery CVE-2020-26948

Severity
CVSSv3 Score
9.8
Vulnerability description

Emby Server before 4.5.0 allows server-side request forgery (SSRF) via the Items/RemoteSearch/Image ImageURL parameter.

Risk description

No risk description to display.

Recommendation

Apply the latest security patches or upgrade to a patched version of Emby Server.

Codename
Not available
Detectable with
Network Scanner
Scan engine
Nuclei
Exploitable with Sniper
No
CVE Published
Oct 10, 2020
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available