8 matches found
EUVD-2019-11527
Malware in sbrugna...
CVE-2019-25086
A vulnerability was found in IET-OU Open Media Player up to 1.5.0. It has been declared as problematic. This vulnerability affects the function webvtt of the file application/controllers/timedtext.php. The manipulation of the argument ttmlurl leads to cross site scripting. The attack can be...
CVE-2019-25086
A vulnerability was found in IET-OU Open Media Player up to 1.5.0. It has been declared as problematic. This vulnerability affects the function webvtt of the file application/controllers/timedtext.php. The manipulation of the argument ttmlurl leads to cross site scripting. The attack can be...
CVE-2019-25086
A vulnerability was found in IET-OU Open Media Player up to 1.5.0. It has been declared as problematic. This vulnerability affects the function webvtt of the file application/controllers/timedtext.php. The manipulation of the argument ttmlurl leads to cross site scripting. The attack can be...
Cross site scripting
A vulnerability was found in IET-OU Open Media Player up to 1.5.0. It has been declared as problematic. This vulnerability affects the function webvtt of the file application/controllers/timedtext.php. The manipulation of the argument ttmlurl leads to cross site scripting. The attack can be...
CVE-2019-25086 IET-OU Open Media Player timedtext.php webvtt cross site scripting
A vulnerability was found in IET-OU Open Media Player up to 1.5.0. It has been declared as problematic. This vulnerability affects the function webvtt of the file application/controllers/timedtext.php. The manipulation of the argument ttmlurl leads to cross site scripting. The attack can be...
CVE-2019-25086
The CVE-2019-25086 entry describes a cross-site scripting (XSS) vulnerability in IET-OU Open Media Player up to version 1.5.0, affected by the webvtt function in application/controllers/timedtext.php. Manipulating the ttml_url parameter enables remote XSS. A fix is available in version 1.5.1, wit...
Open Media Player 跨站脚本漏洞
Open Media Player is a mainstream audio and video player service open-sourced by the IET at the OU. A cross-site scripting vulnerability exists in versions of Open Media Player prior to 1.5.0, which stems from the fact that incorrect manipulation of the parameter ttmlurl can lead to cross-site...