Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo

Multimedia

Ampache

Ampache is a web-based audio/video streaming application and file manager.

Official Site:

http://ampache.org/

Severity Summary:

Critical: 2 High: 11 Medium: 11
Reference
Title
Severity
CVE-2020-15153
Ampache Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2024-51490
Ampache Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Critical
CVE-2024-51485
Ampache Cross-Site Request Forgery (CSRF) Vulnerability
High
CVE-2017-18375
Ampache Deserialization of Untrusted Data Vulnerability
High
CVE-2008-3929
Ampache Improper Link Resolution Before File Access (Link Following) Vulnerability
High
CVE-2006-5668
Ampache Other Vulnerability
High
CVE-2021-21399
Ampache Improper Access Control Vulnerability
High
CVE-2022-4665
Ampache Unrestricted Upload of File with Dangerous Type Vulnerability
High
CVE-2024-51487
Ampache Cross-Site Request Forgery (CSRF) Vulnerability
High
CVE-2023-0771
Ampache Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
High
CVE-2019-12385
Ampache Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
High
CVE-2024-51486
Ampache Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
High
CVE-2024-51484
Ampache Cross-Site Request Forgery (CSRF) Vulnerability
High
CVE-2019-12386
Ampache Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2024-41665
Ampache Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2024-28853
Ampache Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2024-47184
Ampache Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2024-51489
Ampache Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2024-51488
Ampache Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2024-47828
Ampache Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2023-0606
Ampache Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2021-32644
Ampache Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2007-4438
Ampache Improper Authentication Vulnerability
Medium
CVE-2024-28852
Ampache Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium