Skip to main content
CVE-2020-26948 CRITICAL POC THREAT Act Now

Emby Server before 4.5.0 allows SSRF via the Items/RemoteSearch/Image ImageURL parameter. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SSRF Emby
NVD GitHub
CVSS 3.1
9.8
EPSS
87.2%
CVE-2020-26935 CRITICAL POC PATCH THREAT Act Now

An issue was discovered in SearchController in phpMyAdmin before 4.9.6 and 5.x before 5.0.3. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

SQLi Phpmyadmin Backports Sle Leap Fedora +1
NVD
CVSS 3.1
9.8
EPSS
67.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy