Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Owncast
(Owncast_project)Repositories |
Unknown: This might be proprietary software. |
#Vulnerabilities | 4 |
Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2023-11-27 | CVE-2023-46480 | An issue in OwnCast v.0.1.1 allows a remote attacker to execute arbitrary code and obtain sensitive information via the authHost parameter of the indieauth function. | Owncast | 9.8 | ||
2023-06-10 | CVE-2023-3188 | Server-Side Request Forgery (SSRF) in GitHub repository owncast/owncast prior to 0.1.0. | Owncast | 6.5 | ||
2022-11-29 | CVE-2022-3751 | SQL Injection in GitHub repository owncast/owncast prior to 0.0.13. | Owncast | 9.8 | ||
2021-12-14 | CVE-2021-39183 | Owncast is an open source, self-hosted live video streaming and chat server. In affected versions inline scripts are executed when Javascript is parsed via a paste action. This issue is patched in 0.0.9 by blocking unsafe-inline Content Security Policy and specifying the script-src. The worker-src is required to be set to blob for the video player. | Owncast | 6.1 |