Craig Drummond Cantata — known CVE vulnerabilities
Every CVE whose affected-product data names Craig Drummond Cantata, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2013-7300 — CVSS 5.0 (medium): Absolute path traversal vulnerability in cantata before 1.2.2 allows local users to read arbitrary files via a full pathname in a request…
CVE-2013-7301 — CVSS 5.0 (medium): Cantata before 1.2.2 does not restrict access to files in the play queue, which allows remote attackers to obtain sensitive information by…