Bplugins - Html5 Audio Player CVE

Filtered by vendor Bplugins Subscribe

Filtered by product Html5 Audio Player

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-24412	1 Bplugins	1 Html5 Audio Player	2021-10-21	3.5 LOW	5.4 MEDIUM
The Html5 Audio Player â€“ Audio Player for WordPress plugin before 2.1.3 does not sanitise or validate the parameters from its shortcode, allowing users with a role as low as contributor to set Cross-Site Scripting payload in them which will be triggered in the page/s with the embed malicious shortcode

Vulnerabilities (CVE)