2 matches found
CVE-2025-8071
CVE-2025-8071 : Mine CloudVod plugin for WordPress has a Stored Cross-Site Scripting (XSS) vulnerability via the audio parameter in all versions up to 2.1.10. The issue arises from insufficient input sanitization and output escaping. It affects authenticated attackers with Contributor-level acces...
WordPress Mine CloudVod plugin <= 2.1.10 - Authenticated (Contributor+) Stored Cross-Site Scripting via audio Parameter vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via audio Parameter vulnerability discovered by Peter Thaleikis in WordPress Plugin Mine CloudVod versions = 2.1.10...