All 3 CVE vulnerabilities found in seerr, with AI-generated Chinese analysis, references, and POCs.
Vendor: seerr-team
| CVE ID | Title | CVSS | Severity | Paused |
|---|---|---|---|---|
| CVE-2026-27793 | Seerr has Broken Object-Level Authorization in User Profile Endpoint that Exposes Third-Party Notification Credentials CWE-639 | 6.5 | Medium | 2026-02-27 |
| CVE-2026-27792 | Seerr missing authentication on pushSubscription endpoints CWE-862 | 5.4 | Medium | 2026-02-27 |
| CVE-2026-27707 | Plex-configured Seerr instances vulnerable to unauthenticated account registration via Jellyfin authentication endpoint CWE-288 | 7.3 | High | 2026-02-27 |
All 3 known CVE vulnerabilities affecting seerr with full Chinese analysis, references, and POCs where available.