📦 Emby

CVE-2025-64113 is an authentication bypass vulnerability in Emby Server that allows attackers to gain full administrative access to the media server. Any Emby Server instance running versions below 4....

This vulnerability allows an attacker to inject malicious content into the Emby Server admin dashboard by manipulating the X-Emby-Client header during authentication. The injected content appears unsa...

CVE-2021-25827 is an authentication bypass vulnerability in Emby Server that allows attackers to bypass login requirements by setting the X-Forwarded-For HTTP header to a local IP address. This affect...

This CVE describes a Server-Side Request Forgery (SSRF) vulnerability in Emby Server that allows attackers to make unauthorized requests from the server to internal or external systems. Attackers can ...