Vulnerabilities > Spotify

DATE	CVE	VULNERABILITY TITLE	RISK
2018-12-20	CVE-2018-1000843	Cross-Site Request Forgery (CSRF) vulnerability in Spotify Luigi Luigi version prior to version 2.8.0; after commit 53b52e12745075a8acc016d33945d9d6a7a6aaeb; after GitHub PR spotify/luigi/pull/1870 contains a Cross ite Request Forgery (CSRF) vulnerability in API endpoint: /api/<method> that can result in Task metadata such as task name, id, parameter, etc. network low complexity spotify CWE-352	8.8
2018-04-19	CVE-2018-1167	OS Command Injection vulnerability in Spotify 1.0.69.336 This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Spotify Music Player 1.0.69.336. network low complexity spotify CWE-78	8.8

Vulnerabilities > Spotify {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Spotify"}]}