Mp3 Audio Player For Music, Radio & Podcast Security Vulnerabilities and Issues — Mp3 Audio Player For Music, Radio & Podcast CVE List

Lucene search

SonaarMp3 Audio Player For Music, Radio & Podcast

9 matches found

CVE•added 2024/12/09 1:15 p.m.•85 views

CVE-2023-47822

Missing Authorization vulnerability in Sonaar Music MP3 Audio Player for Music, Radio & Podcast by Sonaar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects MP3 Audio Player for Music, Radio & Podcast by Sonaar: from n/a through 4.10.

8.8CVSS5.5AI score0.00204EPSS

CVE•added 2024/03/31 8:15 p.m.•51 views

CVE-2024-30530

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Sonaar Music MP3 Audio Player for Music, Radio & Podcast by Sonaar allows Stored XSS.This issue affects MP3 Audio Player for Music, Radio & Podcast by Sonaar: from n/a through 5.1.

6.5CVSS6.7AI score0.0006EPSS

CVE•added 2024/03/29 2:15 p.m.•46 views

CVE-2024-30487

Missing Authorization vulnerability in Sonaar Music MP3 Audio Player for Music, Radio & Podcast by Sonaar.This issue affects MP3 Audio Player for Music, Radio & Podcast by Sonaar: from n/a through 5.1.

7.6CVSS7.7AI score0.00165EPSS

CVE•added 2025/01/02 12:15 p.m.•43 views

CVE-2024-56266

Missing Authorization vulnerability in Sonaar Music MP3 Audio Player for Music, Radio & Podcast by Sonaar allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects MP3 Audio Player for Music, Radio & Podcast by Sonaar: from n/a through 5.8.

8.8CVSS6.4AI score0.00109EPSS

CVE•added 2024/04/10 5:15 p.m.•42 views

CVE-2024-31343

7.5CVSS9.4AI score0.0085EPSS

CVE•added 2024/11/19 8:15 a.m.•41 views

CVE-2024-10268

The MP3 Audio Player – Music Player, Podcast Player & Radio by Sonaar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's sonaar_audioplayer shortcode in all versions up to, and including, 5.8 due to insufficient input sanitization and output escaping on user supplied...

6.4CVSS5.7AI score0.00041EPSS

CVE•added 2024/07/10 8:15 a.m.•39 views

CVE-2024-5664

The MP3 Audio Player – Music Player, Podcast Player & Radio by Sonaar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'id' attribute within the plugin's sonaar_audioplayer shortcode in all versions up to, and including, 5.5 due to insufficient input sanitization and output...

6.4CVSS5.5AI score0.00089EPSS

CVE•added 2024/08/29 11:15 a.m.•36 views

CVE-2024-7856

The MP3 Audio Player – Music Player, Podcast Player & Radio by Sonaar plugin for WordPress is vulnerable to unauthorized arbitrary file deletion due to a missing capability check on the removeTempFiles() function and insufficient path validation on the 'file' parameter in all versions up to, and in...

9.1CVSS8.8AI score0.59428EPSS

CVE•added 2021/11/01 9:15 a.m.•35 views

CVE-2021-24624

The MP3 Audio Player for Music, Radio & Podcast by Sonaar WordPress plugin before 2.4.2 does not properly sanitize or escape data in some of its Playlist settings, allowing high privilege users to perform Cross-Site Scripting attacks

4.8CVSS4.8AI score0.00225EPSS