Vulnerabilities in melodicmedia

2 results

CVE-2025-14395MEDIUMPopover Windows <= 1.2 - Missing Authorization to Authenticated (Subscriber+) Popover Configuration Update via AJAX ActionsEPSS 0.2%CVE-2025-14394MEDIUMPopover Windows <= 1.2 - Cross-Site Request Forgery to Arbitrary Popover Configuration UpdateEPSS 0.1%