Emby Server before 4.5.0 allows SSRF via the Items/RemoteSearch/Image ImageURL parameter. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
SSRF
Emby
NVD
GitHub
CVSS 3.1
9.8
EPSS
87.2%
An issue was discovered in SearchController in phpMyAdmin before 4.9.6 and 5.x before 5.0.3. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.
SQLi
Phpmyadmin
Backports Sle
Leap
Fedora
+1
NVD
CVSS 3.1
9.8
EPSS
67.1%