ГлавнаяУязвимости → CVE-2025-13803
7.3высокая

CVE-2025-13803

Описание

A vulnerability was identified in MediaCrush 1.0.0/1.0.1. The affected element is an unknown function of the file /mediacrush/paths.py of the component Header Handler. Such manipulation of the argument Host leads to improper neutralization of http headers for scripting syntax. The attack can be launched remotely.

CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://github.com/lakshayyverma/CVE-Discovery/blob/main/mediacrush.mdhttps://vuldb.com/?ctiid.333813https://vuldb.com/?id.333813https://vuldb.com/?submit.691857