Lucene search

CVE-2024-5205

🗓️ 24 May 2024 03:08:15Reported by WordfenceType

Videojs HTML5 Player for WordPress Stored XSS vulnerability in versions up to 1.1.11

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
WPVulnDB	Videojs HTML5 Player < 1.1.12 - Authenticated (Contributor+) Stored Cross-Site Scripting via videojs_video Shortcode	23 May 202400:00	–	wpvulndb
Vulnrichment	CVE-2024-5205 Videojs HTML5 Player <= 1.1.11 - Authenticated (Contributor+) Stored Cross-Site Scripting via videojs_video Shortcode	24 May 202403:07	–	vulnrichment
NVD	CVE-2024-5205	24 May 202403:15	–	nvd
Cvelist	CVE-2024-5205 Videojs HTML5 Player <= 1.1.11 - Authenticated (Contributor+) Stored Cross-Site Scripting via videojs_video Shortcode	24 May 202403:07	–	cvelist
Patchstack	WordPress Videojs HTML5 Player Plugin <= 1.1.11 is vulnerable to Cross Site Scripting (XSS)	24 May 202400:00	–	patchstack
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (May 20, 2024 to May 26, 2024)	30 May 202415:23	–	wordfence

Vulners

Vulnrichment

Node

naa986 videojs_html5_playerRange≤1.1.11wordpress

[
  {
    "vendor": "naa986",
    "product": "Videojs HTML5 Player",
    "versions": [
      {
        "version": "*",
        "status": "affected",
        "lessThanOrEqual": "1.1.11",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
plugins	www.plugins.trac.wordpress.org/browser/videojs-html5-player/trunk/videojs-html5-player.php
wordpress	www.wordpress.org/plugins/videojs-html5-player/
plugins	www.plugins.trac.wordpress.org/changeset/3091226/
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/4ffd76a2-6700-4c2a-858d-4c7339a8d09a

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

24 May 2024 03:15Current

5.9Medium risk

Vulners AI Score5.9

CVSS36.4

EPSS0.00143

SSVC