CVE-2025-64325 | Emby Server prior 4.8.1.0/4.9.0.0-beta X-Emby-Client cross site scripting (GHSA-2gwc-988r-2r7x)

A vulnerability was found in Emby Server and classified as problematic. The affected element is an unknown function. The manipulation of the argument X-Emby-Client results in cross site scripting.

This vulnerability is known as CVE-2025-64325. It is possible to launch the attack remotely. No exploit is available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More