Cross-site scripting (XSS) vulnerability in Cherry Music before 0.36.0 allows remote authenticated users to inject arbitrary web script or HTML via the playlistname field when creating a new playlist.

Continuous attack surface discovery, validated security testing, and rapid reaction to zero-days.

A live walkthrough of how teams use ZeroVault to find and fix what attackers actually exploit.

Learn about our mission, technology, and how we help organizations stay protected against modern cyber threats.

Our mission, our people, and how we partner with security teams across the world.

Ready to See Your True Attack Surface?

Join thousands of security teams who trust ZeroVault to discover vulnerabilities before attackers do. Get started with a personalized demo.

Complete visibility into your external attack surface. Discover vulnerabilities before attackers do.