Vulnerabilidades en advplyr
18 resultadosCVE-2025-25205HIGHRemote Authentication-Bypass can lead to server crash or limited information disclosure due to faulty pattern matchingEPSS 3.8%CVE-2024-35236MEDIUMAudiobookshelf Cross-Site-Scripting vulnerability via crafted ebooksEPSS 0.8%CVE-2023-47624HIGHAudiobookshelf Arbitrary File Read VulnerabilityEPSS 0.8%CVE-2023-47619HIGHAudiobookshelf Server-Side Request Forgery and Arbitrary File Read VulnerabilityEPSS 0.6%CVE-2024-43797MEDIUMPath Traversal in audiobookshelfEPSS 0.5%CVE-2025-57800HIGHAudiobookshelf vulnerable to OIDC token exfiltration and account takeoverEPSS 0.4%CVE-2023-51665MEDIUMAudiobookshelf vulnerable to Blind SSRF in `Auth.js`EPSS 0.3%CVE-2023-51697MEDIUMAudiobookshelf vulnerable to Blind SSRF in `podcastUtils.js`EPSS 0.3%CVE-2026-42888MEDIUMAudiobookshelf: Path Traversal vulnerability in the audiobookshelf projectEPSS 0.3%CVE-2025-46338MEDIUMAudiobookshelf Vulnerable to Cross-Site-Scripting Reflected via POST Request in /api/uploadEPSS 0.3%CVE-2026-42886MEDIUMAudiobookshelf: Memory amplification DoS via oversized compressed details entry in backup uploadEPSS 0.3%CVE-2026-42885MEDIUMAudiobookshelf: Path prefix bypass in filesystem existence check leaks out-of-scope file existenceEPSS 0.2%CVE-2026-27963MEDIUMAudiobookshelf has Stored XSS in Tooltip.vue via Audiobook MetadataEPSS 0.2%CVE-2026-42887MEDIUMAudiobookshelf: Stored Cross-Site Scripting in Login Page Custom MessageEPSS 0.2%CVE-2026-42883MEDIUMAudiobookshelf: Cross-library file exfiltration via unscoped bulk download endpointEPSS 0.2%CVE-2026-27974MEDIUMAudiobooksheld VUlnerable to Stored XSS in WrappingMarquee.js via Audiobook Metadata (Mobile App Audio Player)EPSS 0.2%CVE-2026-27973MEDIUMAudiobookshelf has Stored XSS in ItemSearchCard.vue via Audiobook Metadata (Search Results on Mobile App)EPSS 0.2%CVE-2026-42884MEDIUMAudiobookshelf: Collection endpoints bypass library access controls exposing restricted library dataEPSS 0.2%