Lucene search

K

Text-to-speech Security Vulnerabilities

cve
cve

CVE-2024-1772

The Play.ht – Make Your Blog Posts Accessible With Text to Speech Audio plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.6.4 via deserialization of untrusted input from the play_podcast_data post meta. This makes it possible for authenticated...

8.8CVSS

9AI Score

0.0004EPSS

2024-03-13 04:15 PM
9
cve
cve

CVE-2024-0828

The Play.ht – Make Your Blog Posts Accessible With Text to Speech Audio plugin for WordPress is vulnerable to unauthorized access of functionality due to a missing capability check on several functions in all versions up to, and including, 3.6.4. This makes it possible for authenticated attackers,....

5.4CVSS

6AI Score

0.0004EPSS

2024-03-13 04:15 PM
11
cve
cve

CVE-2024-0827

The Play.ht – Make Your Blog Posts Accessible With Text to Speech Audio plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.6.4. This is due to missing or incorrect nonce validation on several functions. This makes it possible for...

4.3CVSS

5.2AI Score

0.0004EPSS

2024-03-13 04:15 PM
6
cve
cve

CVE-2023-0070

The ResponsiveVoice Text To Speech WordPress plugin before 1.7.7 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting....

5.4CVSS

5.3AI Score

0.001EPSS

2023-02-06 08:15 PM
42
cve
cve

CVE-2019-16253

The Text-to-speech Engine (aka SamsungTTS) application before 3.0.02.7 and 3.0.00.101 for Android allows a local attacker to escalate privileges, e.g., to system privileges. The Samsung case ID is...

7.8CVSS

7.5AI Score

0.0004EPSS

2019-09-25 11:15 PM
32
cve
cve

CVE-2007-0018

Stack-based buffer overflow in the NCTAudioFile2.AudioFile ActiveX control (NCTAudioFile2.dll), as used by multiple products, allows remote attackers to execute arbitrary code via a long argument to the SetFormatLikeSample function. NOTE: the products include (1) NCTsoft NCTAudioStudio,...

7.7AI Score

0.952EPSS

2007-01-24 09:28 PM
47