Vulnerability Database
Blog
FAQ
Docs
arrow_forward
search
UBUNTU-CVE-2023-0606
See a problem?
Please try reporting it
to the source
first.
Source
https://ubuntu.com/security/CVE-2023-0606
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-0606.json
JSON Data
https://api.osv.dev/v1/vulns/UBUNTU-CVE-2023-0606
Upstream
CVE-2023-0606
Published
2023-02-01T01:15:00Z
Modified
2025-07-16T08:16:43.799593Z
Severity
9.3 (Critical)
CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N
CVSS Calculator
6.1 (Medium)
CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
CVSS Calculator
Ubuntu - medium
Summary
[none]
Details
Cross-site Scripting (XSS) - Reflected in GitHub repository ampache/ampache prior to 5.5.7.
References
https://ubuntu.com/security/CVE-2023-0606
https://github.com/ampache/ampache/commit/d3191503ca856dfe0b33d7cb17717ffd480046cb
https://huntr.dev/bounties/0bfed46d-ac96-43c4-93fb-13f68b4e711b
https://www.cve.org/CVERecord?id=CVE-2023-0606
Affected packages
Ubuntu:Pro:16.04:LTS
/
ampache
Package
Name
ampache
Purl
pkg:deb/ubuntu/ampache@3.6-rzb2779+dfsg-0ubuntu9.2?arch=source&distro=esm-apps/xenial
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Affected versions
3.*
3.6-rzb2779+dfsg-0ubuntu5
3.6-rzb2779+dfsg-0ubuntu6
3.6-rzb2779+dfsg-0ubuntu7
3.6-rzb2779+dfsg-0ubuntu8
3.6-rzb2779+dfsg-0ubuntu9
3.6-rzb2779+dfsg-0ubuntu9.1
3.6-rzb2779+dfsg-0ubuntu9.2
UBUNTU-CVE-2023-0606 - OSV