Loading
In Jellyfin before 10.8, stored XSS allows theft of an admin access token.
Use CWE-79, Jellyfin vendor hub and Jellyfin product page to widen CVE-2022-35910 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2026-31852, CVE-2026-35031 and CVE-2026-35033 for nearby disclosures in the same product family.