| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-51484 | Insufficient Validation in Controllers (Activation/Deactivation) in Ampache | ampache | ampache | - | - | 2024-11-11 19:46:08 | Deep Dive |
| CVE-2024-51485 | Insufficient Validation in Plugins (Activation/Deactivation) in Ampache | ampache | ampache | - | - | 2024-11-11 19:45:34 | Deep Dive |
| CVE-2024-51486 | Stored Cross-Site Scripting in Ampache | ampache | ampache | Medium | 5.5 | 2024-11-11 19:44:55 | Deep Dive |
| CVE-2024-51487 | Insufficient Validation in Catalog (Activation/Deactivation) in Ampache | ampache | ampache | - | - | 2024-11-11 19:43:07 | Deep Dive |
| CVE-2024-51488 | Insufficient Validation in Delete Message in Ampache | ampache | ampache | - | - | 2024-11-11 19:42:30 | Deep Dive |
| CVE-2024-51489 | Insufficient Message Token Validation in Ampache | ampache | ampache | - | - | 2024-11-11 19:37:46 | Deep Dive |
| CVE-2024-51490 | Stored Cross-Site Scripting in Ampache | ampache | ampache | Medium | 5.5 | 2024-11-11 19:35:22 | Deep Dive |
| CVE-2024-47828 | Cross-Site Request Forgery in ampache | ampache | ampache | Medium | 5.3 | 2024-10-09 18:35:20 | Deep Dive |
| CVE-2024-47184 | Ampache vulnerable to Stored XSS via Democratic Playlist Name | ampache | ampache | Medium | 6.1 | 2024-09-27 14:05:02 | Deep Dive |
| CVE-2024-41665 | Ampache Stored Cross-site Scripting Vulnerability | ampache | ampache | Medium | 5.5 | 2024-07-23 17:14:56 | Deep Dive |
| CVE-2024-28852 | Ampache has multiple reflective XSS vulnerabilities | ampache | ampache | Medium | 6.1 | 2024-03-27 13:18:10 | Deep Dive |
| CVE-2024-28853 | Ampache Stored XSS | ampache | ampache | Low | 3.9 | 2024-03-27 13:17:57 | Deep Dive |
| CVE-2023-0771 | SQL Injection in ampache/ampache | ampache | ampache/ampache | 高危 | - | 2023-02-10 00:00:00 | Deep Dive |
| CVE-2023-0606 | Cross-site Scripting (XSS) - Reflected in ampache/ampache | ampache | ampache/ampache | 中危 | - | 2023-02-01 00:00:00 | Deep Dive |
| CVE-2022-4665 | Unrestricted Upload of File with Dangerous Type in ampache/ampache | ampache | ampache/ampache | 高危 | - | 2022-12-23 00:00:00 | Deep Dive |
| CVE-2021-32644 | Cross-site Scripting in Random.php | ampache | ampache | Medium | 6.4 | 2021-06-22 17:45:11 | Deep Dive |
| CVE-2020-15153 | Unauthenticated SQL injection in Ampache | ampache | ampache | High | 8.2 | 2021-04-30 15:20:16 | Deep Dive |
| CVE-2021-21399 | Unauthenticated SubSonic backend access in Ampache | ampache | ampache | Critical | 9.1 | 2021-04-13 17:50:13 | Deep Dive |