exploitDog

CVE-2025-39524

Опубликовано: 16 апр. 2025

Источник: nvd

CVSS3: 6.5

EPSS Низкий

Описание

Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in bPlugins Html5 Audio Player allows Stored XSS. This issue affects Html5 Audio Player: from n/a through 2.2.28.

Ссылки

https://patchstack.com/database/wordpress/plugin/html5-audio-player/vulnerability/wordpress-html5-audio-player-2-2-28-cross-site-scripting-xss-vulnerability?_s_id=cve

EPSS

Процентиль: 16%

0.00051

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-80

Связанные уязвимости

GHSA-798j-54v2-vw4x

CVSS3: 6.5

github

10 месяцев назад

Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in bPlugins Html5 Audio Player allows Stored XSS. This issue affects Html5 Audio Player: from n/a through 2.2.28.

EPSS

Процентиль: 16%

0.00051

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-80