This page lists publicly disclosed CVE vulnerabilities affecting amarok web_frontend (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2005-2029 | amaroK Web Frontend 1.3 stores the globals.inc file under the web root without a .php extension and insufficient access control, which allows remote attackers to obtain the database username and password via a direct request to the file. | [email protected] | 7.5 | 0.65% | 2005-06-17 | 2026-04-16 |