WordPress Video Player Plugin <= 1.5.22 is vulnerable to Cross Site Scripting (XSS)
CVE-2023-48320
4.8MEDIUM
What is CVE-2023-48320?
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WebDorado SpiderVPlayer allows Stored XSS.This issue affects SpiderVPlayer: from n/a through 1.5.22.
Affected Version(s)
SpiderVPlayer <= 1.5.22