5 matches found
CVE-2026-39647
Server-Side Request Forgery SSRF vulnerability in sonaar MP3 Audio Player for Music, Radio & Podcast by Sonaar mp3-music-player-by-sonaar allows Server Side Request Forgery.This issue affects MP3 Audio Player for Music, Radio & Podcast by Sonaar: from n/a through = 5.11...
PT-2026-8097
The MP3 Audio Player – Music Player, Podcast Player & Radio by Sonaar plugin for WordPress is vulnerable to Server-Side Request Forgery in versions 5.3 to 5.10 via the 'load lyrics ajax callback' function. This makes it possible for authenticated attackers, with author level access and above, to...
EUVD-2025-9808
Malicious code in bioql PyPI...
CVE-2025-32235
Missing Authorization vulnerability in sonaar MP3 Audio Player for Music, Radio & Podcast by Sonaar mp3-music-player-by-sonaar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects MP3 Audio Player for Music, Radio & Podcast by Sonaar: from n/a through = 5.9.4...
PT-2024-23986 · Sonaar · Mp3 Audio Player For Music
Name of the Vulnerable Software and Affected Versions: MP3 Audio Player for Music, Radio & Podcast by Sonaar versions 4.10.1 and earlier Description: The issue is related to a Missing Authorization vulnerability in the MP3 Audio Player for Music, Radio & Podcast by Sonaar. No information is...