Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
BpluginsHtml5 Audio Player

3 matches found

CVE
CVEadded 2023/02/06 7:59 p.m.59 views

CVE-2023-0170

The CVE-2023-0170 entry documents an XSS vulnerability in the WordPress Html5 Audio Player plugin prior to version 2.1.12. The issue arises because the plugin does not validate and escape certain shortcode attributes before embedding them in pages/posts, enabling users with the Contributor role o...

5.4CVSS5.3AI score0.00198EPSS
CVE
CVEadded 2024/07/22 8:14 a.m.54 views

CVE-2024-37445

CVE-2024-37445 is a stored XSS vulnerability in the WordPress plugin WordPress HTML5 Audio Player (bPlugins Html5 Audio Player), affected up to version 2.2.23. The issue arises from improper neutralization during web page generation, enabling stored cross-site scripting. The Wordfence/WordPress v...

6.5CVSS6.5AI score0.00143EPSS
CVE
CVEadded 2021/10/18 1:45 p.m.44 views

CVE-2021-24412

The CVE-2021-24412 entry applies to the WordPress plugin Html5 Audio Player (before 2.1.3). The vulnerability is a stored Cross-Site Scripting (XSS) flaw caused by insufficient sanitization/validation of shortcode parameters, enabling users with as low as a contributor role to inject malicious pa...

5.4CVSS5.3AI score0.0018EPSS