CVE-2025-62143

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in nicashmu Post Video Players video-playlist-and-gallery-plugin allows Retrieve Embedded Sensitive Data.This issue affects Post Video Players: from n/a through = 1.163...

CVE-2025-62143

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in nicashmu Post Video Players video-playlist-and-gallery-plugin allows Retrieve Embedded Sensitive Data.This issue affects Post Video Players: from n/a through = 1.163...

EUVD-2025-206027

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in nicashmu Post Video Players allows Retrieve Embedded Sensitive Data.This issue affects Post Video Players: from n/a through 1.163...

CVE-2025-62143 WordPress Post Video Players plugin <= 1.163 - Sensitive Data Exposure vulnerability

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in nicashmu Post Video Players allows Retrieve Embedded Sensitive Data.This issue affects Post Video Players: from n/a through 1.163...

CVE-2025-62143 WordPress Post Video Players plugin <= 1.163 - Sensitive Data Exposure vulnerability

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in nicashmu Post Video Players video-playlist-and-gallery-plugin allows Retrieve Embedded Sensitive Data.This issue affects Post Video Players: from n/a through = 1.163...

CVE-2025-62143

Technical details about CVE-2025-62143 are not provided in the supplied documents. The connected Wordfence report does not specify affected versions or remediation. Monitor for updates from vendors/security researchers for confirmed impact, exploitability, and fixes.

WordPress Post Video Players plugin <= 1.163 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by Nabil Irawan in WordPress Plugin Post Video Players versions = 1.163...

WordPress Post Video Players plugin <= 1.163 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Nabil Irawan in WordPress Plugin Post Video Players versions = 1.163...

PT-2025-54367

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in nicashmu Post Video Players allows Retrieve Embedded Sensitive Data.This issue affects Post Video Players: from n/a through 1.163...

WordPress plugin Post Video Players 安全漏洞

Expo, etc. are products of Expo. expo is a product of WebSockets ws, etc. are products of WebSockets open source. ws is a Node.js WebSocket library. tanStack form, etc. are products of TanStack open source. form is a form state management program. A security vulnerability exists in the WordPress...

EUVD-2024-21010

Malicious code in bioql PyPI...

CVE-2024-23515

Cross-Site Request Forgery CSRF vulnerability in Cincopa Post Video Players.This issue affects Post Video Players: from n/a through 1.159...

CVE-2024-23515

Cross-Site Request Forgery CSRF vulnerability in Cincopa Post Video Players.This issue affects Post Video Players: from n/a through 1.159...

CVE-2024-23515

CVE-2024-23515 is a CSRF vulnerability in the WordPress plugin Cincopa Post Video Players (versions

Post Video Players < 1.160 - Settings Update via CSRF

Description The plugin does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack...

WordPress Post Video Players Plugin <= 1.159 is vulnerable to Cross Site Request Forgery (CSRF)

Software Post Video Players Type Plugin Vulnerable versions = 1.159 Fixed in 1.160 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-23515 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID b56876f978eb Credits Skalucy Required...

Enhancing video streaming quality for ExoPlayer - Part 1: Quality of User Experience Metrics

The online video player landscape is fragmented with a wide variety of players across a mix of popular platforms. In the world of HTML5-video players in browsers, there are a number of open-source solutions e.g., hls.js, dash.js, Shaka Player, as well as commercial offerings which include Akamai'...

Subtitle Hack Leaves 200 Million Vulnerable to Remote Code Execution

A proof of concept attack using malicious video subtitle files reveals how adversaries can execute remote code on PCs, Smart TVs and mobile devices using popular video players and services such as VLC Media Player, Kodi, Stremio and Popcorn Time. “This is a brand new attack vector. We haven’t see...

WordPress Post Video Players Plugin <= 1.136 - XSS

Because of this vulnerability, authenticated users like editors can store HTML or JS code. Solution Update the plugin...

Debian Security Advisory DSA 2298-2 (apache2)

The remote host is missing an update to apache2 announced via advisory DSA 2298-2. OpenVAS Vulnerability Test $Id: deb22982.nasl 6613 2017-07-07 12:08:40Z cfischer $ Description: Auto-generated from advisory DSA 2298-2 apache2 Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc...