Submit #379205: Ampache 6.5.0 Cross Site Scripting
| Title | Ampache 6.5.0 Cross Site Scripting |
|---|---|
| Description | Ampache 6.5.0 is vulnerable to a stored cross-site scripting (XSS) vulnerability. This vulnerability exists in the "Playlists - Democratic - Configure Democratic Playlist" feature. An attacker with Content Manager permissions can set the Name field to . When any administrator or user accesses the Democratic functionality, they will be affected by this stored XSS vulnerability. |
| Source | ⚠️ https:/ |
| User | jiashenghe (UID 39445) |
| Submission | 07/23/2024 11:36 (6 months ago) |
| Moderation | 07/24/2024 06:11 (19 hours later) |
| Status | Duplicate |
| VulDB Entry | 272302 [ampache up to 6.5.x Name cross site scripting] |
| Points | 0 |