VYPR

rpm package

opensuse/beets&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/beets&distro=openSUSE%20Tumbleweed

Vulnerabilities (1)

  • CVE-2026-42052MedMay 4, 2026
    affected < 2.11.0-1.1fixed 2.11.0-1.1

    Beets is the media library management system. Prior to version 2.10.0, the bundled web UI uses Underscore template interpolation mode <%= ... %> for untrusted metadata fields. In this runtime, <%= ... %> is raw insertion and HTML escaping is only performed by <%- ... %>. Rendered