exploitDog

CVE-2025-23854

Опубликовано: 16 янв. 2025

Источник: nvd

CVSS3: 5.9

EPSS Низкий

Описание

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in YesStreaming.com Shoutcast and Icecast Internet Radio Hosting Shoutcast and Icecast HTML5 Web Radio Player by YesStreaming.com allows Stored XSS.This issue affects Shoutcast and Icecast HTML5 Web Radio Player by YesStreaming.com: from n/a through 3.3.

Ссылки

https://patchstack.com/database/wordpress/plugin/shoutcast-and-icecast-html5-web-radio-player-by-yesstreaming-com/vulnerability/wordpress-shoutcast-and-icecast-html5-web-radio-player-by-yesstreaming-com-plugin-3-3-cross-site-scripting-xss-vulnerability?_s_id=cve

EPSS

Процентиль: 42%

0.00202

Низкий

5.9 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

GHSA-rh5p-hcx7-6rc7

CVSS3: 5.9

github

около 1 года назад

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in YesStreaming.com Shoutcast and Icecast Internet Radio Hosting Shoutcast and Icecast HTML5 Web Radio Player by YesStreaming.com allows Stored XSS.This issue affects Shoutcast and Icecast HTML5 Web Radio Player by YesStreaming.com: from n/a through 3.3.

EPSS

Процентиль: 42%

0.00202

Низкий

5.9 Medium

CVSS3

Дефекты

CWE-79