CVE-2025-46383: CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') in Emby Windows
Severity: mediumType: vulnerabilityCVE-2025-46383
CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
CVE-2025-46383: CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') in Emby Windows
Medium
Published: Sun Jul 20 2025 (07/20/2025, 14:35:19 UTC)
Source: CVE Database V5
Vendor/Project: Emby
Product: Windows
Description
CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
Technical Details
- Data Version
- 5.1
- Assigner Short Name
- INCD
- Date Reserved
- 2025-04-23T10:46:25.709Z
- Cvss Version
- 3.1
- State
- PUBLISHED
Threat ID: 687d012da83201eaac02df46
Added to database: 7/20/2025, 2:46:05 PM
Last updated: 7/20/2025, 2:46:05 PM
Views: 1
Related Threats
CVE-2025-7895: Unrestricted Upload in harry0703 MoneyPrinterTurbo
MediumVulnerabilitySun Jul 20 2025
CVE-2025-46382: CWE-200 Exposure of Sensitive Information to an Unauthorized Actor in CyberArk IDP
MediumVulnerabilitySun Jul 20 2025
CVE-2025-7894: SQL Injection in Onyx
MediumVulnerabilitySun Jul 20 2025
CVE-2025-7893: Improper Export of Android Application Components in Foresight News App
MediumVulnerabilitySun Jul 20 2025
CVE-2025-7892: Improper Export of Android Application Components in IDnow App
MediumVulnerabilitySun Jul 20 2025
Actions
Please log in to the Console to use AI analysis features.
External Links
Need enhanced features?
Contact root@offseq.com for Pro access with improved analysis and higher rate limits.