Skip to main content

Ampache

19 CVEs product

Monthly

CVE-2024-51490 CRITICAL POC Act Now

Ampache is a web based audio/video streaming application and file manager. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Ampache
NVD GitHub
CVSS 3.1
9.0
EPSS
0.5%
CVE-2024-51489 MEDIUM POC This Month

Ampache is a web based audio/video streaming application and file manager. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Ampache
NVD GitHub
CVSS 4.0
5.3
EPSS
0.3%
CVE-2024-51488 MEDIUM POC This Month

Ampache is a web based audio/video streaming application and file manager. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Ampache
NVD GitHub
CVSS 4.0
5.3
EPSS
0.3%
CVE-2024-51487 MEDIUM POC This Month

Ampache is a web based audio/video streaming application and file manager. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Ampache
NVD GitHub
CVSS 4.0
5.3
EPSS
0.3%
CVE-2024-51486 HIGH POC This Week

Ampache is a web based audio/video streaming application and file manager. Rated high severity (CVSS 8.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Ampache
NVD GitHub
CVSS 3.1
8.4
EPSS
0.5%
CVE-2024-51485 MEDIUM POC This Month

Ampache is a web based audio/video streaming application and file manager. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Ampache
NVD GitHub
CVSS 4.0
5.3
EPSS
0.3%
CVE-2024-51484 MEDIUM POC This Month

Ampache is a web based audio/video streaming application and file manager. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Ampache
NVD GitHub
CVSS 4.0
5.3
EPSS
0.3%
CVE-2024-47828 MEDIUM POC This Month

ampache is a web based audio/video streaming application and file manager. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Ampache
NVD GitHub
CVSS 3.1
6.5
EPSS
0.3%
CVE-2024-47184 MEDIUM POC PATCH This Month

Ampache is a web based audio/video streaming application and file manager. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

XSS Ampache
NVD GitHub
CVSS 3.1
4.8
EPSS
0.5%
CVE-2024-41665 MEDIUM POC This Month

Ampache, a web based audio/video streaming application and file manager, has a stored cross-site scripting (XSS) vulnerability in versions prior to 6.6.0. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Ampache
NVD GitHub
CVSS 3.1
5.4
EPSS
0.5%
CVE-2024-28853 MEDIUM This Month

Ampache is a web based audio/video streaming application and file manager. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

PHP XSS Ampache
NVD GitHub
CVSS 3.1
5.9
EPSS
0.6%
CVE-2024-28852 MEDIUM POC This Month

Ampache is a web based audio/video streaming application and file manager. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Ampache
NVD GitHub
CVSS 3.1
6.1
EPSS
0.5%
CVE-2023-0771 HIGH POC PATCH This Week

SQL Injection in GitHub repository ampache/ampache prior to 5.5.7,develop. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

SQLi Ampache
NVD GitHub
CVSS 3.1
8.8
EPSS
0.7%
CVE-2023-0606 MEDIUM POC PATCH This Month

Cross-site Scripting (XSS) - Reflected in GitHub repository ampache/ampache prior to 5.5.7. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

XSS Ampache
NVD GitHub
CVSS 3.1
6.1
EPSS
0.6%
CVE-2022-4665 HIGH POC PATCH This Week

Unrestricted Upload of File with Dangerous Type in GitHub repository ampache/ampache prior to 5.5.6. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

File Upload Ampache
NVD GitHub
CVSS 3.1
8.8
EPSS
0.8%
CVE-2021-32644 MEDIUM PATCH This Month

Ampache is an open source web based audio/video streaming application and file manager. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

PHP XSS Ampache
NVD GitHub
CVSS 3.1
5.4
EPSS
0.8%
CVE-2021-21399 HIGH POC This Week

Ampache is a web based audio/video streaming application and file manager. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Ampache
NVD GitHub
CVSS 3.1
7.5
EPSS
1.4%
CVE-2019-12386 MEDIUM POC This Month

An issue was discovered in Ampache through 3.9.1. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Ampache
NVD
CVSS 3.0
5.4
EPSS
0.8%
CVE-2019-12385 HIGH POC This Week

An issue was discovered in Ampache through 3.9.1. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Ampache
NVD
CVSS 3.0
8.8
EPSS
1.6%
EPSS 0% CVSS 9.0
CRITICAL POC Act Now

Ampache is a web based audio/video streaming application and file manager. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Ampache
NVD GitHub
EPSS 0% CVSS 5.3
MEDIUM POC This Month

Ampache is a web based audio/video streaming application and file manager. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Ampache
NVD GitHub
EPSS 0% CVSS 5.3
MEDIUM POC This Month

Ampache is a web based audio/video streaming application and file manager. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Ampache
NVD GitHub
EPSS 0% CVSS 5.3
MEDIUM POC This Month

Ampache is a web based audio/video streaming application and file manager. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Ampache
NVD GitHub
EPSS 0% CVSS 8.4
HIGH POC This Week

Ampache is a web based audio/video streaming application and file manager. Rated high severity (CVSS 8.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Ampache
NVD GitHub
EPSS 0% CVSS 5.3
MEDIUM POC This Month

Ampache is a web based audio/video streaming application and file manager. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Ampache
NVD GitHub
EPSS 0% CVSS 5.3
MEDIUM POC This Month

Ampache is a web based audio/video streaming application and file manager. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Ampache
NVD GitHub
EPSS 0% CVSS 6.5
MEDIUM POC This Month

ampache is a web based audio/video streaming application and file manager. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Ampache
NVD GitHub
EPSS 1% CVSS 4.8
MEDIUM POC PATCH This Month

Ampache is a web based audio/video streaming application and file manager. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

XSS Ampache
NVD GitHub
EPSS 0% CVSS 5.4
MEDIUM POC This Month

Ampache, a web based audio/video streaming application and file manager, has a stored cross-site scripting (XSS) vulnerability in versions prior to 6.6.0. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Ampache
NVD GitHub
EPSS 1% CVSS 5.9
MEDIUM This Month

Ampache is a web based audio/video streaming application and file manager. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

PHP XSS Ampache
NVD GitHub
EPSS 1% CVSS 6.1
MEDIUM POC This Month

Ampache is a web based audio/video streaming application and file manager. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Ampache
NVD GitHub
EPSS 1% CVSS 8.8
HIGH POC PATCH This Week

SQL Injection in GitHub repository ampache/ampache prior to 5.5.7,develop. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

SQLi Ampache
NVD GitHub
EPSS 1% CVSS 6.1
MEDIUM POC PATCH This Month

Cross-site Scripting (XSS) - Reflected in GitHub repository ampache/ampache prior to 5.5.7. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

XSS Ampache
NVD GitHub
EPSS 1% CVSS 8.8
HIGH POC PATCH This Week

Unrestricted Upload of File with Dangerous Type in GitHub repository ampache/ampache prior to 5.5.6. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

File Upload Ampache
NVD GitHub
EPSS 1% CVSS 5.4
MEDIUM PATCH This Month

Ampache is an open source web based audio/video streaming application and file manager. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

PHP XSS Ampache
NVD GitHub
EPSS 1% CVSS 7.5
HIGH POC This Week

Ampache is a web based audio/video streaming application and file manager. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Ampache
NVD GitHub
EPSS 1% CVSS 5.4
MEDIUM POC This Month

An issue was discovered in Ampache through 3.9.1. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Ampache
NVD
EPSS 2% CVSS 8.8
HIGH POC This Week

An issue was discovered in Ampache through 3.9.1. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Ampache
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy