Skip to main content

Radio Player

3 CVEs product

Monthly

CVE-2024-8267 MEDIUM PATCH This Month

The Radio Player - Live Shoutcast, Icecast and Any Audio Stream Player for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'align' attribute within the. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

WordPress XSS Radio Player
NVD
CVSS 3.1
5.4
EPSS
0.3%
CVE-2024-34753 MEDIUM This Month

Missing Authorization vulnerability in SoftLab Radio Player.0.73. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Radio Player
NVD
CVSS 3.1
5.3
EPSS
0.3%
CVE-2024-29811 MEDIUM This Month

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in SoftLab Radio Player allows Stored XSS.0.73. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Radio Player
NVD
CVSS 3.1
6.5
EPSS
0.2%
EPSS 0% CVSS 5.4
MEDIUM PATCH This Month

The Radio Player - Live Shoutcast, Icecast and Any Audio Stream Player for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'align' attribute within the. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

WordPress XSS Radio Player
NVD
EPSS 0% CVSS 5.3
MEDIUM This Month

Missing Authorization vulnerability in SoftLab Radio Player.0.73. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Radio Player
NVD
EPSS 0% CVSS 6.5
MEDIUM This Month

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in SoftLab Radio Player allows Stored XSS.0.73. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Radio Player
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy