Plex

Three Security Findings in Tautulli: SSRF, JSONP Injection, and SQL Injection
Three Security Findings …

Background

Tautulli is a Python/CherryPy web application that sits alongside your Plex Media Server and gives you statistics, notifications, and monitoring for everything happening on your server. It is one of the most popular self-hosted Plex companion apps, and a lot of people run it exposed on …

March 27, 2026 Read