CVE-2025-69053

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LambertGroup Universal Video Player universal-video-player allows Reflected XSS.This issue affects Universal Video Player: from n/a through = 3.8.4...

CVE-2025-27005

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LambertGroup HTML5 Video Player lbg-vp2-html5-bottom allows Reflected XSS.This issue affects HTML5 Video Player: from n/a through = 5.3.5...

CVE-2025-69048

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LambertGroup Universal Video Player universal-video-player allows Reflected XSS.This issue affects Universal Video Player: from n/a through = 3.8.4...

CVE-2025-27005

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LambertGroup HTML5 Video Player lbg-vp2-html5-bottom allows Reflected XSS.This issue affects HTML5 Video Player: from n/a through = 5.3.5...

PT-2026-4136

Name of the Vulnerable Software and Affected Versions LambertGroup Universal Video Player versions through 3.8.4 Description The Universal Video Player software contains a flaw related to improper input handling during web page generation, which allows for Reflected Cross-site Scripting XSS. This...

PT-2026-3958

Name of the Vulnerable Software and Affected Versions LambertGroup HTML5 Video Player versions through 5.3.5 Description A Reflected Cross-site Scripting XSS issue exists in LambertGroup HTML5 Video Player lbg-vp2-html5-bottom due to improper neutralization of input during web page generation. Th...

EUVD-2025-28531

Malicious code in bioql PyPI...

CVE-2025-53562

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LambertGroup Universal Video Player - Addon for WPBakery Page Builder lbguniversalvideoplayeraddonvisualcomposer allows Reflected XSS.This issue affects Universal Video Player - Addon for WPBakery...

CVE-2025-53562

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LambertGroup Universal Video Player - Addon for WPBakery Page Builder lbguniversalvideoplayeraddonvisualcomposer allows Reflected XSS.This issue affects Universal Video Player - Addon for WPBakery...

CVE-2025-48170

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in LambertGroup Universal Video Player - Addon for WPBakery Page Builder lbg-universal-video-player-addon-visual-composer allows Reflected XSS.This issue affects Universal Video Player - Addon for...

CVE-2025-53212

CVE-2025-53212 affects the WordPress plugin Revolution Video Player With Bottom Playlist (versions up to 2.9.2). The issue is a Reflected Cross-Site Scripting (XSS) caused by improper input neutralization during web page generation. Impact is consistent with a reflective XSS vector, with CVSS v3....

CVE-2025-53562

CVE-2025-53562 refers to an XSS vulnerability in LambertGroup Universal Video Player - Addon for WPBakery Page Builder, applicable to versions up to and including 3.2.1. The root cause is improper input neutralization during web page generation, enabling reflected XSS. Public detail confirms affe...

PT-2025-33926 · WordPress · Lambertgroup Universal Video Player - Addon For Wpbakery Page Builder

Name of the Vulnerable Software and Affected Versions: LambertGroup Universal Video Player - Addon for WPBakery Page Builder versions through 3.2.1 Description: The software contains an Improper Neutralization of Input During Web Page Generation issue, which allows for Reflected Cross-site...

PT-2025-33980 · WordPress · Lambertgroup Universal Video Player - Addon For Wpbakery Page Builder

Name of the Vulnerable Software and Affected Versions: LambertGroup Universal Video Player - Addon for WPBakery Page Builder versions through 3.2.1 Description: The software contains an Improper Neutralization of Input During Web Page Generation issue, leading to a Reflected Cross-site Scripting...

CVE-2025-47567

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in LambertGroup Video Player & FullScreen Video Background universal-video-player-and-bg allows Blind SQL Injection.This issue affects Video Player & FullScreen Video Background: from n/a through =...

CVE-2025-47567

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in LambertGroup Video Player & FullScreen Video Background universal-video-player-and-bg allows Blind SQL Injection.This issue affects Video Player & FullScreen Video Background: from n/a through =...

CVE-2025-47567

CVE-2025-47567 affects WordPress Video Player & FullScreen Video Background (versions

PT-2025-21713 · Unknown · Lambertgroup Video Player & Fullscreen Video Background

Name of the Vulnerable Software and Affected Versions: LambertGroup Video Player & FullScreen Video Background versions 2.4.1 and earlier Description: The issue is related to an Improper Neutralization of Special Elements used in an SQL Command, also known as SQL Injection. This allows for Blind...