High severity7.3NVD Advisory· Published Dec 1, 2025· Updated Apr 15, 2026
CVE-2025-13803
CVE-2025-13803
Description
A vulnerability was identified in MediaCrush 1.0.0/1.0.1. The affected element is an unknown function of the file /mediacrush/paths.py of the component Header Handler. Such manipulation of the argument Host leads to improper neutralization of http headers for scripting syntax. The attack can be launched remotely.
Affected products
1- Range: >=1.0.0 <=1.0.1
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.