Lucene search
K

9 matches found

Github Security Blog
Github Security Blog
added 2022/05/17 4:39 a.m.31 views

jplayer Cross Site Scripting vulnerability

Multiple cross-site scripting XSS vulnerabilities in actionscript/Jplayer.as in the Flash SWF component jplayer.swf in jPlayer before 2.3.0 allow remote attackers to inject arbitrary web script or HTML via the 1 jQuery or 2 id parameters, a different vulnerability than CVE-2013-1942 and...

4.3CVSS6.2AI score0.02722EPSS
Exploits1References11Affected Software1
Veracode
Veracode
added 2018/11/16 7:17 a.m.32 views

Cross-Site Scripting (XSS)

jPlayer is vulnerable to cross-site scripting. A remote attacker is able to inject arbitrary Javascript into a victim’s browser via the jQuery and id parameters in the Flash SWF component. This CVE is different from CVE-2013-1942 and CVE-2013-2022...

4.3CVSS5.8AI score0.05494EPSS
Exploits3References14Affected Software2
Prion
Prion
added 2013/08/17 4:55 p.m.28 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in actionscript/Jplayer.as in the Flash SWF component jplayer.swf in jPlayer before 2.2.23 allow remote attackers to inject arbitrary web script or HTML via the 1 jQuery or 2 id parameters, a different vulnerability than CVE-2013-1942 and...

4.3CVSS5.9AI score0.05494EPSS
Exploits3References8Affected Software1
UbuntuCve
UbuntuCve
added 2013/08/17 4:55 p.m.35 views

CVE-2013-2022

Multiple cross-site scripting XSS vulnerabilities in actionscript/Jplayer.as in the Flash SWF component jplayer.swf in jPlayer before 2.2.23 allow remote attackers to inject arbitrary web script or HTML via the 1 jQuery or 2 id parameters, a different vulnerability than CVE-2013-1942 and...

4.3CVSS6AI score0.02722EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2013/08/15 5:55 p.m.38 views

CVE-2013-1942

Multiple cross-site scripting XSS vulnerabilities in actionscript/Jplayer.as in the Flash SWF component jplayer.swf in jPlayer before 2.2.20, as used in ownCloud Server before 5.0.4 and other products, allow remote attackers to inject arbitrary web script or HTML via the 1 jQuery or 2 id...

4.3CVSS5.9AI score0.05494EPSS
Exploits2References3
CVE
CVE
added 2013/08/15 5:0 p.m.85 views

CVE-2013-1942

CVE-2013-1942 describes multiple XSS vulnerabilities in actionscript/Jplayer.as (jplayer.swf) of the jPlayer Flash SWF component. The flaws allow remote attackers to inject arbitrary script or HTML via the (1) jQuery or (2) id parameters, demonstrated by document.write in the jQuery parameter. Af...

4.3CVSS5.6AI score0.05494EPSS
Exploits2References8Affected Software1
Packet Storm
Packet Storm
added 2013/04/21 12:0 a.m.122 views

jPlayer 2.2.22 XSS / Content Spoofing

Hello list! I want to inform you about multiple vulnerabilities in jPlayer. These are Cross-Site Scripting and Content Spoofing and vulnerabilities in jPlayer. Which is used at tens thousands of web sites and in multiple web applications. ------------------------- Affected products:...

4.3CVSS6.4AI score0.05494EPSS
Exploits2
OwnCloud
OwnCloud
added 2013/04/11 5:49 p.m.57 views

XSS Vulnerability in jPlayer - ownCloud

A cross-site scripting XSS vulnerability in all ownCloud versions prior to 5.0.5 including the 4.0.x branch allows remote attackers to execute arbitrary javascript when a user opens a special crafted URL. This vulnerability exists in the bundled 3rdparty plugin "jPlayer", "jPlayer" released versi...

4.3CVSS5.7AI score0.05494EPSS
Exploits2Affected Software1
Circl
Circl
added 2013/03/29 12:0 a.m.29 views

CVE-2013-1942

creationtimestamp| type| source ---|---|--- 2013-03-29 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/38460...

4.3CVSS6.8AI score0.05494EPSS
Exploits2References1
Rows per page
Query Builder