CVE-2023-49096 — Jellyfin is a Free Software Media System for managing and streaming media. In affected versions there is an argument injection in the VideosController, specifically the `/Videos//stream` and `/Videos/ — CVE Database · The Intelligence Room