CVE-2024-29882

HIGH NUCLEI

SRS <6.0.121 - XSS

Title source: llm

Description

SRS is a simple, high-efficiency, real-time video server. SRS's `/api/v1/vhosts/vid-<id>?callback=<payload>` endpoint didn't filter the callback function name which led to injecting malicious javascript payloads and executing XSS ( Cross-Site Scripting). This vulnerability is fixed in 5.0.210 and 6.0.121.

Nuclei Templates (1)

HTTP API DOM - XSS on JSONP callback

HIGHVERIFIEDby rootxharsh,iamnoooob,pdresearch

Shodan: http.favicon.hash:1386054408

References (2)

[Patch] https://github.com/ossrs/srs/commit/244ce7bc013a0b805274a65132a2980680ba6b9d

View Patch ZIP pw:eip

[Exploit, Vendor Advisory] https://github.com/ossrs/srs/security/advisories/GHSA-gv9r-qcjc-5hj7

Scores

CVSS v3 7.2

EPSS 0.0770

EPSS Percentile 91.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

Details

CWE

CWE-79

Status published

Products (1)

ossrs/simple_realtime_server < 5.0.210

Published Mar 28, 2024

Tracked Since Feb 18, 2026