CVE-2016-1000148

🗓️ 10 Oct 2016 20:00:00Reported by mitreType

cve

cve🔗 web.nvd.nist.gov👁 80 Views🌐 WEB

CVE-2016-1000148 Reflected XSS in wordpress plugin s3-video v0.98

Reporter	Title	Published	Views	Family All 10
CNVD	Wordpress s3-video plugin cross-site scripting vulnerability	13 Oct 201600:00	–	cnvd
Cvelist	CVE-2016-1000148	10 Oct 201620:00	–	cvelist
EUVD	EUVD-2016-1092	7 Oct 202500:30	–	euvd
Nuclei	WordPress S3 Video <=0.983 - Cross-Site Scripting	26 Jun 202618:13	–	nuclei
NVD	CVE-2016-1000148	10 Oct 201620:59	–	nvd
OSV	CVE-2016-1000148	10 Oct 201620:59	–	osv
Patchstack	WordPress S3 Video Plugin <= 0.983 - Reflected Cross Site Scripting	13 Apr 201600:00	–	patchstack
Prion	Cross site scripting	10 Oct 201620:59	–	prion
wpexploit	S3 Video Plugin <= 0.983 - Unauthenticated Reflected Cross-Site Scripting (XSS)	12 Apr 201600:00	–	wpexploit
WPVulnDB	S3 Video Plugin <= 0.983 - Unauthenticated Reflected Cross-Site Scripting (XSS)	12 Apr 201600:00	–	wpvulndb

NVD

Node

s3-video_project s3-videoRange≤0.983wordpress

Source	Link
securityfocus	www.securityfocus.com/bid/93583
wordpress	www.wordpress.org/plugins/s3-video
vapidlabs	www.vapidlabs.com/wp/wp_advisory.php

Parameter	Position	Path	Description	CWE
media	query param	wp-content/plugins/s3-video/views/video-management/preview_video.php?media="><script>alert(1);</script><"	Unauthenticated Reflected XSS in s3-video WordPress plugin	CWE-79

17 Jun 2026 00:38Current

5.9Medium risk

Vulners AI Score5.9

CVSS 24.3

CVSS 36.1

EPSS0.03209

cve-2016-1000148 reflected xss wordpress plugin s3-video nvd