Emby · Media Browser Emby Server · CVE-2023-4167
**Name of the Vulnerable Software and Affected Versions**
Media Browser Emby Server version 4.7.13.0
**Description**
A vulnerability was found in the processing of the file /web/, which leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
**Recommendations**
For Media Browser Emby Server version 4.7.13.0, it is recommended to upgrade the affected component to a newer version. As a temporary workaround, consider restricting access to the /web/ file to minimize the risk of exploitation.