Immich

Immich

3 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.6

CVE-2026-53662

  • EPSS 0.24%
  • Veröffentlicht 23.06.2026 18:18:05
  • Zuletzt bearbeitet 25.06.2026 20:18:11

immich is a high performance self-hosted photo and video management solution. From commit 4ffa26c9 until 4eb1003, a reflected cross-site scripting (XSS) vulnerability on the /auth/login page allows an attacker to fully compromise any authenticated us...

5.4

CVE-2026-40096

Exploit
  • EPSS 0.21%
  • Veröffentlicht 14.04.2026 23:54:17
  • Zuletzt bearbeitet 23.04.2026 15:26:12

immich is a high performance self-hosted photo and video management solution. Versions prior to 2.7.3 contain an open redirect vulnerability in the shared album functionality, where the album name is inserted unsanitized into a <meta> tag in api.serv...

7.5

CVE-2026-25118

Exploit
  • EPSS 0.45%
  • Veröffentlicht 03.04.2026 15:51:07
  • Zuletzt bearbeitet 15.04.2026 18:38:04

immich is a high performance self-hosted photo and video management solution. Prior to version 2.6.0, the Immich application is vulnerable to credential disclosure when a user authenticates to a shared album. During the authentication process, the ap...