Export CSV

Products

1 vendor
VendorProductsCVEsKEVAvg EPSSWorst Severity
44054.0%HIGH

Related CVEs

4
CVE IDDescriptionSeverityCVSSKEVEPSSPublished
CVE-2024-13865The S3Player WordPress plugin through 4.2.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against only unauthenticated users.MEDIUM6.121.7%May 15, 2025
CVE-2024-13862The S3Bubble Media Streaming (AWS|Elementor|YouTube|Vimeo Functionality) WordPress plugin through 8.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as adminHIGH7.116.5%Mar 11, 2025
CVE-2015-9463The s3bubble-amazon-s3-audio-streaming plugin 2.0 for WordPress has directory traversal via the adverts/assets/plugins/ultimate/content/downloader.php path parameter.HIGH7.589.5%Oct 10, 2019
CVE-2015-9464The s3bubble-amazon-s3-html-5-video-with-adverts plugin 0.7 for WordPress has directory traversal via the adverts/assets/plugins/ultimate/content/downloader.php path parameter.HIGH7.588.4%Oct 10, 2019