Lucene search
K

38 matches found

NVD
NVD
added 2026/06/08 2:16 a.m.15 views

CVE-2023-54351

WordPress Sonaar Music Plugin 4.7 contains a stored cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts through the comment functionality. Attackers can submit JavaScript payloads in the comment parameter to wp-comments-post.php which are stored an...

7.2CVSS0.00184EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/08 1:55 a.m.49 views

CVE-2023-54351 WordPress Sonaar Music Plugin 4.7 Stored XSS via Comments

WordPress Sonaar Music Plugin 4.7 contains a stored cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts through the comment functionality. Attackers can submit JavaScript payloads in the comment parameter to wp-comments-post.php which are stored an...

7.2CVSS0.00184EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/08 1:55 a.m.6 views

CVE-2023-54351

WordPress Sonaar Music Plugin 4.7 contains a stored cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts through the comment functionality. Attackers can submit JavaScript payloads in the comment parameter to wp-comments-post.php which are stored an...

7.2CVSS5.2AI score0.00184EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/08 1:55 a.m.10 views

CVE-2023-54351 WordPress Sonaar Music Plugin 4.7 Stored XSS via Comments

WordPress Sonaar Music Plugin 4.7 contains a stored cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts through the comment functionality. Attackers can submit JavaScript payloads in the comment parameter to wp-comments-post.php which are stored an...

7.2CVSS5.2AI score0.00184EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/08 1:55 a.m.22 views

EUVD-2023-60582

WordPress Sonaar Music Plugin 4.7 contains a stored cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts through the comment functionality. Attackers can submit JavaScript payloads in the comment parameter to wp-comments-post.php which are stored an...

7.2CVSS5.2AI score0.00184EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/06/08 12:0 a.m.11 views

WordPress plugin Sonaar Music 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

7.2CVSS5AI score0.00184EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/08 12:0 a.m.19 views

PT-2026-47233

Name of the Vulnerable Software and Affected Versions Sonaar Music Plugin version 4.7 Description A stored cross-site scripting issue exists in the comment functionality. Unauthenticated attackers can inject malicious scripts by submitting JavaScript payloads via the comment parameter to the...

7.2CVSS5.2AI score0.00184EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-51917

Malicious code in bioql PyPI...

8.8CVSS9.1AI score0.0042EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-29239

Malicious code in bioql PyPI...

7.5CVSS8.8AI score0.00554EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-28407

Malicious code in bioql PyPI...

7.6CVSS8.6AI score0.00482EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.18 views

EUVD-2024-28450

Malicious code in bioql PyPI...

6.5CVSS8.6AI score0.00337EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-53064

Malicious code in bioql PyPI...

8.8CVSS8.7AI score0.00321EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:56 a.m.12 views

CVE-2024-56266

Missing Authorization vulnerability in sonaar MP3 Audio Player for Music, Radio & Podcast by Sonaar mp3-music-player-by-sonaar allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects MP3 Audio Player for Music, Radio & Podcast by Sonaar: from n/a through = 5.8...

8.8CVSS7.2AI score0.00321EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:58 a.m.7 views

CVE-2023-47822

Missing Authorization vulnerability in Sonaar Music MP3 Audio Player for Music, Radio & Podcast by Sonaar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects MP3 Audio Player for Music, Radio & Podcast by Sonaar: from n/a through 4.10...

8.8CVSS6.9AI score0.0042EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 9:36 a.m.11 views

CVE-2024-30487

Missing Authorization vulnerability in Sonaar Music MP3 Audio Player for Music, Radio & Podcast by Sonaar.This issue affects MP3 Audio Player for Music, Radio & Podcast by Sonaar: from n/a through 5.1...

7.6CVSS8.6AI score0.00482EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 12:26 a.m.8 views

CVE-2024-31343

Missing Authorization vulnerability in Sonaar Music MP3 Audio Player for Music, Radio & Podcast by Sonaar.This issue affects MP3 Audio Player for Music, Radio & Podcast by Sonaar: from n/a through 4.10.1...

7.5CVSS8.6AI score0.00554EPSS
Exploits0References1
NVD
NVD
added 2025/01/02 12:15 p.m.29 views

CVE-2024-56266

Missing Authorization vulnerability in sonaar MP3 Audio Player for Music, Radio & Podcast by Sonaar mp3-music-player-by-sonaar allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects MP3 Audio Player for Music, Radio & Podcast by Sonaar: from n/a through = 5.8...

8.8CVSS0.00321EPSS
Exploits0References1
OSV
OSV
added 2025/01/02 12:15 p.m.3 views

CVE-2024-56266

Missing Authorization vulnerability in Sonaar Music MP3 Audio Player for Music, Radio & Podcast by Sonaar allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects MP3 Audio Player for Music, Radio & Podcast by Sonaar: from n/a through 5.8...

8.8CVSS5.8AI score0.00321EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/02 12:1 p.m.21 views

CVE-2024-56266 WordPress MP3 Audio Player plugin <= 5.8 - Broken Access Control vulnerability

Missing Authorization vulnerability in sonaar MP3 Audio Player for Music, Radio & Podcast by Sonaar mp3-music-player-by-sonaar allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects MP3 Audio Player for Music, Radio & Podcast by Sonaar: from n/a through = 5.8...

6.3CVSS0.00321EPSS
Exploits0References1
CVE
CVE
added 2025/01/02 12:1 p.m.55 views

CVE-2024-56266

**CVE-2024-56266 is a Missing Authorization vulnerability in the Sonaar MP3 Audio Player for Music, Radio & Podcast (MP3 Audio Player – Sonaar). Public references in Red Hat and Wordfence records confirm the issue affects the MP3 Audio Player by Sonaar up to version 5.8 and allows accessing funct...

8.8CVSS7.2AI score0.00321EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder