Vulnerabilities in ampache
18 resultsCVE-2020-15153HIGHUnauthenticated SQL injection in AmpacheEPSS 2.4%CVE-2021-21399CRITICALUnauthenticated SubSonic backend access in AmpacheEPSS 1.4%CVE-2021-32644MEDIUMCross-site Scripting in Random.phpEPSS 0.8%CVE-2022-4665LOWUnrestricted Upload of File with Dangerous Type in ampache/ampacheEPSS 0.8%CVE-2023-0771HIGH SQL Injection in ampache/ampacheEPSS 0.7%CVE-2023-0606CRITICALCross-site Scripting (XSS) - Reflected in ampache/ampacheEPSS 0.6%CVE-2024-28853LOWAmpache Stored XSSEPSS 0.6%CVE-2024-28852MEDIUMAmpache has multiple reflective XSS vulnerabilitiesEPSS 0.5%CVE-2024-47184MEDIUMAmpache vulnerable to Stored XSS via Democratic Playlist NameEPSS 0.5%CVE-2024-51490MEDIUMStored Cross-Site Scripting in AmpacheEPSS 0.5%CVE-2024-51486MEDIUMStored Cross-Site Scripting in AmpacheEPSS 0.5%CVE-2024-41665MEDIUMAmpache Stored Cross-site Scripting VulnerabilityEPSS 0.4%CVE-2024-51487MEDIUMInsufficient Validation in Catalog (Activation/Deactivation) in AmpacheEPSS 0.3%CVE-2024-51485MEDIUMInsufficient Validation in Plugins (Activation/Deactivation) in AmpacheEPSS 0.3%CVE-2024-51484MEDIUMInsufficient Validation in Controllers (Activation/Deactivation) in AmpacheEPSS 0.3%CVE-2024-47828MEDIUMCross-Site Request Forgery in ampacheEPSS 0.3%CVE-2024-51489MEDIUMInsufficient Message Token Validation in AmpacheEPSS 0.3%CVE-2024-51488MEDIUMInsufficient Validation in Delete Message in AmpacheEPSS 0.3%