PT-2025-47889 · Unknown · Streamity Xtream Iptv Player
Lakshay12311
·
Published
2025-11-24
·
Updated
2025-11-24
·
CVE-2025-13588
CVSS v2.0
6.5
Medium
| Vector | AV:N/AC:L/Au:S/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
lKinderBueno Streamity Xtream IPTV Player versions up to 2.8
Description
A server-side request forgery condition exists in lKinderBueno Streamity Xtream IPTV Player versions up to 2.8. The issue is located in an unknown function within the
public/proxy.php file. This allows for remote manipulation. The exploit has been publicly released.Recommendations
Upgrade to version 2.8.1 to resolve this issue.
Exploit
Fix
SSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Streamity Xtream Iptv Player