Lucene search
WesterndealAdvanced Dewplayer
2 matches found
CVE-2013-7240
Directory traversal vulnerability in download-file.php in the Advanced Dewplayer plugin 1.2 for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the dew_file parameter.
5CVSS9.1AI score0.7781EPSS
CVE-2025-30592
Missing Authorization vulnerability in westerndeal Advanced Dewplayer allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Advanced Dewplayer: from n/a through 1.6.
5.3CVSS7.1AI score0.00053EPSS