Vulnerabilities > Navidrome

DATE	CVE	VULNERABILITY TITLE	RISK
2023-12-21	CVE-2023-51442	Improper Authentication vulnerability in Navidrome Navidrome is an open source web-based music collection server and streamer. network low complexity navidrome CWE-287	8.6
2022-01-24	CVE-2022-23857	SQL Injection vulnerability in Navidrome model/criteria/criteria.go in Navidrome before 0.47.5 is vulnerable to SQL injection attacks when processing crafted Smart Playlists. network low complexity navidrome CWE-89	6.5

Vulnerabilities > Navidrome {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Navidrome"}]}