Cross Site Scripting vulnerability in DerbyNet v9.0 and below allows attackers to execute arbitrary code via the 'back' Parameter in playlist.phpReferenceshttps://chocapikk.com/posts/2024/derbynet-vulnerabilities/
