Lucene search
K

8 matches found

Cvelist
Cvelist
added 2026/06/25 1:12 p.m.28 views

CVE-2026-56006 WordPress H5P plugin <= 1.17.6 - Reflected Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in H5P = 1.17.6 versions...

7.1CVSS0.00175EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/06/18 2:40 p.m.7 views

WordPress H5P plugin <= 1.17.6 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Koutrouss Naddara in WordPress Plugin H5P versions = 1.17.6...

7.1CVSS5.8AI score0.00175EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2025/12/30 12:0 a.m.4 views

WordPress H5P plugin missing authorization vulnerability

WordPress H5P plugin is an open source plugin that allows users to create, manage and embed interactive multimedia content in WordPress websites. A lack of authorization vulnerability exists in WordPress H5P plugin, which can be exploited by an attacker to cause the exploitation of misconfigured...

8.8CVSS6.8AI score0.00273EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/24 12:31 p.m.3 views

CVE-2025-68505 WordPress H5P plugin <= 1.16.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in icc0rz H5P h5p allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects H5P: from n/a through = 1.16.1...

5.3CVSS6.6AI score0.00273EPSS
Exploits0References1
CVE
CVE
added 2025/12/24 12:31 p.m.13 views

CVE-2025-68505

Summary: CVE-2025-68505 describes a missing/incorrect authorization vulnerability in the WordPress H5P plugin, allowing exploitation of misconfigured access control security levels in versions up to and including 1.16.1. Affected product/component: H5P plugin for WordPress (versions

5.3CVSS6.6AI score0.00273EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/24 12:31 p.m.30 views

CVE-2025-68505 WordPress H5P plugin <= 1.16.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in icc0rz H5P h5p allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects H5P: from n/a through = 1.16.1...

5.3CVSS0.00273EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/27 1:34 a.m.8 views

CVE-2025-62951 WordPress H5P plugin <= 1.16.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in icc0rz H5P h5p allows Stored XSS.This issue affects H5P: from n/a through = 1.16.0...

6.5CVSS5.2AI score0.00186EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/10/13 2:57 a.m.8 views

WordPress H5P plugin <= 1.16.0 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin H5P versions = 1.16.0...

6.5CVSS6.1AI score0.00186EPSS
Exploits0Affected Software1
Rows per page
Query Builder