CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

19 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-8788

Malicious code in bioql PyPI...

6.5CVSS8.7AI score0.00204EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-31381

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00976EPSS

Exploits1References3

RedhatCVE•added 2025/04/02 1:39 p.m.•4 views

CVE-2025-31607

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in flomei Simple-Audioplayer simple-audioplayer allows Stored XSS.This issue affects Simple-Audioplayer: from n/a through = 1.1...

6.5CVSS7.2AI score0.00204EPSS

Exploits0References1

Patchstack•added 2025/03/31 2:7 p.m.•2 views

WordPress Simple-Audioplayer plugin <= 1.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by SOPROBRO in WordPress Plugin Simple-Audioplayer versions = 1.1...

6.5CVSS6.1AI score0.00204EPSS

Exploits0Affected Software1

NVD•added 2025/03/31 1:15 p.m.•8 views

CVE-2025-31607

6.5CVSS0.00204EPSS

Exploits0References1

CVE•added 2025/03/31 12:55 p.m.•55 views

CVE-2025-31607

CVE-2025-31607 affects Simple-Audioplayer (

6.5CVSS7.2AI score0.00204EPSS

Exploits0References1

Vulnrichment•added 2025/03/31 12:55 p.m.•5 views

CVE-2025-31607 WordPress Simple-Audioplayer plugin <= 1.1 - Cross Site Scripting (XSS) vulnerability

6.5CVSS8.6AI score0.00204EPSS

Exploits0References1

Cvelist•added 2025/03/31 12:55 p.m.•14 views

CVE-2025-31607 WordPress Simple-Audioplayer plugin <= 1.1 - Cross Site Scripting (XSS) vulnerability

6.5CVSS0.00204EPSS

Exploits0References1

CNNVD•added 2025/03/31 12:0 a.m.•1 views

WordPress plugin Simple-Audioplayer 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

6.5CVSS7.6AI score0.00204EPSS

Exploits0References2

Positive Technologies•added 2024/11/19 12:0 a.m.•1 views

PT-2024-16147 · Sonaar · Mp3 Audio Player – Music Player

Name of the Vulnerable Software and Affected Versions: The MP3 Audio Player – Music Player, Podcast Player & Radio by Sonaar plugin for WordPress versions up to, and including, 5.8 Description: The issue is related to Stored Cross-Site Scripting via the plugin's sonaar audioplayer shortcode due t...

6.4CVSS7.9AI score0.0036EPSS

Exploits0References9

Patchstack•added 2024/11/18 9:28 p.m.•1 views

WordPress MP3 Audio Player – Music Player, Podcast Player & Radio by Sonaar plugin <= 5.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via sonaar_audioplayer Shortcode vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via sonaaraudioplayer Shortcode vulnerability discovered by Peter Thaleikis in WordPress Plugin MP3 Audio Player for Music, Radio & Podcast by Sonaar versions = 5.8...

6.4CVSS5.8AI score0.0036EPSS

Exploits0References1Affected Software1

ATTACKERKB•added 2024/07/10 8:15 a.m.•2 views

CVE-2024-5664

The MP3 Audio Player – Music Player, Podcast Player & Radio by Sonaar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'id' attribute within the plugin's sonaaraudioplayer shortcode in all versions up to, and including, 5.5 due to insufficient input sanitization and outpu...

6.4CVSS6.1AI score0.00346EPSS

Exploits0References5

NVD•added 2023/04/11 12:15 p.m.•9 views

CVE-2023-27645

An issue found in POWERAMP audioplayer build 925 bundle play and build 954 allows a remote attacker to gain privileges via the reverb and EQ preset parameters...

9.8CVSS9.6AI score0.00976EPSS

Exploits1References3

Prion•added 2023/04/11 12:15 p.m.•12 views

Design/Logic Flaw

An issue found in POWERAMP audioplayer build 925 bundle play and build 954 allows a remote attacker to gain privileges via the reverb and EQ preset parameters...

7.5CVSS9.4AI score0.00976EPSS

Exploits1References3Affected Software1

Vulnrichment•added 2023/04/11 12:0 a.m.•5 views

CVE-2023-27645

An issue found in POWERAMP audioplayer build 925 bundle play and build 954 allows a remote attacker to gain privileges via the reverb and EQ preset parameters...

9.6AI score0.00976EPSS

Exploits1References3

CVE•added 2023/04/11 12:0 a.m.•53 views

CVE-2023-27645

POWERAMP audioplayer (versions 925–954) contains a vulnerability that allows a remote attacker to gain privileges via the reverb and EQ preset parameters. The issue is documented across multiple sources (NVD/Red Hat and PT-Software) as a high-severity vulnerability with network access and no requ...

9.8CVSS9.4AI score0.00976EPSS

Exploits1References3Affected Software1

CNNVD•added 2023/04/11 12:0 a.m.•1 views

POWERAMP 安全漏洞

POWERAMP is a music player for Android. A security vulnerability exists in POWERAMP audioplayer. An attacker can gain privileges by exploiting this vulnerability...

9.8CVSS8.5AI score0.00976EPSS

Exploits1References4

Positive Technologies•added 2023/04/11 12:0 a.m.•3 views

PT-2023-21279 · Unknown · Dbpoweramp Audio Player

Name of the Vulnerable Software and Affected Versions: POWERAMP audioplayer versions 925 through 954 Description: An issue in the POWERAMP audioplayer allows a remote attacker to gain privileges via the reverb and EQ preset parameters. Recommendations: For versions 925 through 954, consider...

9.8CVSS7.3AI score0.00976EPSS

Exploits1References7