Vulnerabilities > Subsonic > Subsonic
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2017-06-07 | CVE-2017-9355 | Server-Side Request Forgery (SSRF) vulnerability in Subsonic 6.1.1 XML external entity (XXE) vulnerability in the import playlist feature in Subsonic 6.1.1 might allow remote attackers to conduct server-side request forgery (SSRF) attacks via a crafted XSPF playlist file. | 4.3 |