VYPR
High severity7.3NVD Advisory· Published Dec 1, 2025· Updated Apr 15, 2026

CVE-2025-13803

CVE-2025-13803

Description

A vulnerability was identified in MediaCrush 1.0.0/1.0.1. The affected element is an unknown function of the file /mediacrush/paths.py of the component Header Handler. Such manipulation of the argument Host leads to improper neutralization of http headers for scripting syntax. The attack can be launched remotely.

Affected products

1

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.