Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/04/07 5:41 a.m.14 views

CVE-2024-13776

The ZoomSounds - WordPress Wave Audio Player with Playlist plugin for WordPress is vulnerable to unauthorized modification of data that can lead to a denial of service due to a missing capability check on the 'dzsapdeletenotice' AJAX action in all versions up to, and including, 6.91. This makes i...

8.1CVSS6.5AI score0.00311EPSS
Exploits0References1
NVD
NVD
added 2025/04/05 6:15 a.m.5 views

CVE-2024-13776

The ZoomSounds - WordPress Wave Audio Player with Playlist plugin for WordPress is vulnerable to unauthorized modification of data that can lead to a denial of service due to a missing capability check on the 'dzsapdeletenotice' AJAX action in all versions up to, and including, 6.91. This makes i...

8.1CVSS0.00311EPSS
Exploits0References2
CVE
CVE
added 2025/04/05 5:32 a.m.65 views

CVE-2025-0839

CVE-2025-0839 concerns ZoomSounds — WordPress Wave Audio Player with Playlist. The vulnerability is a Stored Cross-Site Scripting (XSS) in the ZoomSounds plugin, affecting versions up to and including 6.91, caused by insufficient input sanitization and output escaping on user-supplied shortcode a...

6.4CVSS5.7AI score0.00196EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2025/03/07 9:36 a.m.8 views

CVE-2024-13777

The ZoomSounds - WordPress Wave Audio Player with Playlist plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 6.91 via deserialization of untrusted input from the 'margs' parameter. This makes it possible for unauthenticated attackers to inject a PHP...

9.8CVSS7.8AI score0.00592EPSS
Exploits0References1
CVE
CVE
added 2025/03/05 9:21 a.m.53 views

CVE-2024-13777

The CVE-2024-13777 entry covers ZoomSounds – WordPress Wave Audio Player with Playlist (WordPress plugin) up to version 6.91. It is vulnerable to PHP Object Injection via deserialization of untrusted input in the margs parameter, allowing unauthenticated attackers to inject a PHP object. The base...

9.8CVSS7.8AI score0.00592EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder