CVE-2023-52207

Опубликовано: 08 янв. 2024

Источник: nvd

CVSS3: 9.1

CVSS3: 8.8

EPSS Низкий

Описание

Deserialization of Untrusted Data vulnerability in SVNLabs Softwares HTML5 MP3 Player with Playlist Free.This issue affects HTML5 MP3 Player with Playlist Free: from n/a through 3.0.0.

Ссылки

https://patchstack.com/database/vulnerability/html5-mp3-player-with-playlist/wordpress-html5-mp3-player-plugin-3-0-0-php-object-injection-vulnerability?_s_id=cve
Third Party Advisory
https://patchstack.com/database/vulnerability/html5-mp3-player-with-playlist/wordpress-html5-mp3-player-plugin-3-0-0-php-object-injection-vulnerability?_s_id=cve
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:svnlabs:html5_mp3_player_with_playlist_free:*:*:*:*:*:wordpress:*:*

Версия до 3.0.0 (включая)

EPSS

Процентиль: 63%

0.00457

Низкий

9.1 Critical

CVSS3

8.8 High

CVSS3

Дефекты

CWE-502

Связанные уязвимости

GHSA-p6wf-q8mw-wpwr

CVSS3: 9.1

github

около 2 лет назад

Deserialization of Untrusted Data vulnerability in SVNLabs Softwares HTML5 MP3 Player with Playlist Free.This issue affects HTML5 MP3 Player with Playlist Free: from n/a through 3.0.0.

EPSS

Процентиль: 63%

0.00457

Низкий

9.1 Critical

CVSS3

8.8 High

CVSS3

Дефекты

CWE-502