lachlan

4 exploits Active since Dec 2022
CVE-2022-4665 WRITEUP HIGH WRITEUP
GitHub ampache/ampache <5.5.6 - Info Disclosure
Unrestricted Upload of File with Dangerous Type in GitHub repository ampache/ampache prior to 5.5.6.
CVSS 8.8
CVE-2023-0606 WRITEUP MEDIUM WRITEUP
Ampache < 5.5.7 - XSS
Cross-site Scripting (XSS) - Reflected in GitHub repository ampache/ampache prior to 5.5.7.
CVSS 6.1
CVE-2023-0771 WRITEUP HIGH WRITEUP
Ampache < 5.5.7 - SQL Injection
SQL Injection in GitHub repository ampache/ampache prior to 5.5.7,develop.
CVSS 8.8
CVE-2024-47184 WRITEUP MEDIUM WRITEUP
Ampache <6.6.0 - XSS
Ampache is a web based audio/video streaming application and file manager. Prior to version 6.6.0, the Democratic Playlist Name is vulnerable to a stored cross-site scripting. Version 6.6.0 fixes this issue.
CVSS 6.1