146 matches found
CVE-2026-24385
Deserialization of Untrusted Data vulnerability in gerritvanaaken Podlove Web Player podlove-web-player allows Object Injection.This issue affects Podlove Web Player: from n/a through = 5.9.1...
EUVD-2026-9600
Deserialization of Untrusted Data vulnerability in gerritvanaaken Podlove Web Player podlove-web-player allows Object Injection.This issue affects Podlove Web Player: from n/a through = 5.9.1...
CVE-2026-24385
Deserialization of Untrusted Data vulnerability in gerritvanaaken Podlove Web Player podlove-web-player allows Object Injection.This issue affects Podlove Web Player: from n/a through = 5.9.1...
CVE-2026-24385
CVE-2026-24385 affects Podlove Web Player (WordPress Podlove Web Player plugin) 5.9.1) or applying vendor-supplied patch as soon as available.
CVE-2026-24385
Deserialization of Untrusted Data vulnerability in gerritvanaaken Podlove Web Player podlove-web-player allows Object Injection.This issue affects Podlove Web Player: from n/a through = 5.9.1...
CVE-2026-24385 WordPress Podlove Web Player plugin <= 5.9.1 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in gerritvanaaken Podlove Web Player podlove-web-player allows Object Injection.This issue affects Podlove Web Player: from n/a through = 5.9.1...
CVE-2026-24385 WordPress Podlove Web Player plugin <= 5.9.1 - PHP Object Injection vulnerability
Deserialization of Untrusted Data vulnerability in gerritvanaaken Podlove Web Player podlove-web-player allows Object Injection.This issue affects Podlove Web Player: from n/a through = 5.9.1...
PT-2026-23221
Name of the Vulnerable Software and Affected Versions Podlove Web Player versions through 5.9.1 Description The Podlove Web Player contains a flaw due to deserialization of untrusted data, which can lead to object injection. This issue allows for potential exploitation through the deserialization...
WordPress plugin Podlove Web Player 代码问题漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is...
WordPress Podlove Web Player plugin <= 5.9.1 - PHP Object Injection vulnerability
PHP Object Injection vulnerability discovered by PPzzAArr in WordPress Plugin Podlove Web Player versions = 5.9.1...
EUVD-2026-1110
Malicious code in electra-web-player npm...
MAL-2026-86 Malicious code in electra-web-player (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e90e20a5f518415d7ac86fad709a8ea6499445e427dab71949d06f62ace2dded The package electra-web-player was found to contain malicious code. Source: ghsa-malware...
Malicious code in electra-web-player-event (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45f583354472166aa4f724b9fde7ec74f8d56151edda6123bceaa5ac3560dab2 The package electra-web-player-event was found to contain malicious code. Source: ghsa-malware...
MAL-2026-87 Malicious code in electra-web-player-event (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45f583354472166aa4f724b9fde7ec74f8d56151edda6123bceaa5ac3560dab2 The package electra-web-player-event was found to contain malicious code. Source: ghsa-malware...
Malicious Package
Overview electra-web-player-event is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...
Malicious Package
Overview electra-web-player is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Malicious code in electra-web-player (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e90e20a5f518415d7ac86fad709a8ea6499445e427dab71949d06f62ace2dded The package electra-web-player was found to contain malicious code. Source: ghsa-malware...
Streamity.tv 代码问题漏洞
Streamity.tv is an advanced IPTV web player by E M Individual Developer. A code issue vulnerability exists in Streamity.tv version 2.8 and earlier, which stems from a misbehavior in the file public/proxy.php and could lead to server-side request forgery...
CVE-2025-62908
Missing Authorization vulnerability in gerritvanaaken Podlove Web Player podlove-web-player allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Podlove Web Player: from n/a through = 5.9.1...
EUVD-2025-36031
Missing Authorization vulnerability in gerritvanaaken Podlove Web Player podlove-web-player allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Podlove Web Player: from n/a through = 5.9.1...