All 4 CVE vulnerabilities found in MPD, with AI-generated Chinese analysis, references, and POCs.
Vendor: MusicPlayerDaemon
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-49130 | Music Player Daemon < 0.24.11 CRLF Injection via XspfPlaylistPlugin.cxx CWE-93 | 5.3 | Medium | 2026-05-28 |
| CVE-2026-49129 | Music Player Daemon < 0.24.11 SSRF via CurlInputPlugin CWE-918 | 5.8 | Medium | 2026-05-28 |
| CVE-2026-49128 | Music Player Daemon < 0.24.11 Path Traversal via LocalStorage URI Handling CWE-22 | 7.5 | High | 2026-05-28 |
| CVE-2026-49127 | Music Player Daemon < 0.24.11 Stack Buffer Overflow via pcm_unpack_24be CWE-193 | 8.6 | High | 2026-05-28 |
All 4 known CVE vulnerabilities affecting MPD with full Chinese analysis, references, and POCs where available.