| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-57910 | WordPress AnyClip Luminous Studio Plugin <= 1.3.3 - Cross Site Scripting (XSS) Vulnerability | AnyClip Video Platform | AnyClip Luminous Studio | Medium | 6.5 | 2025-09-22 18:25:21 | Deep Dive |
| CVE-2025-58271 | WordPress AnyClip Luminous Studio Plugin <= 1.3.3 - Cross Site Scripting (XSS) Vulnerability | AnyClip Video Platform | AnyClip Luminous Studio | Medium | 5.9 | 2025-09-22 18:23:14 | Deep Dive |
| CVE-2025-9203 | Media Player Addons for Elementor <= 1.0.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via Multiple Widget Fields | bplugins | Media Player Addons for Elementor – Audio and Video Widgets for Elementor | Medium | 6.4 | 2025-09-17 06:17:48 | Deep Dive |
| CVE-2025-49430 | WordPress Ultimate Video Player Plugin <= 10.1 - Server Side Request Forgery (SSRF) Vulnerability | FWDesign | Ultimate Video Player | High | 7.2 | 2025-09-09 16:26:04 | Deep Dive |
| CVE-2025-32688 | WordPress Target Video Easy Publish plugin <= 3.8.9 - Arbitrary Code Execution vulnerability | Nebojsa | Target Video Easy Publish | Medium | 5.4 | 2025-09-09 16:25:31 | Deep Dive |
| CVE-2025-58876 | WordPress Aparat Video Shortcode Plugin <= 0.2.4 - Cross Site Scripting (XSS) Vulnerability | Ali Aghdam | Aparat Video Shortcode | Medium | 6.5 | 2025-09-05 13:45:49 | Deep Dive |
| CVE-2025-58843 | WordPress Auto Last Youtube Video Plugin <= 1.0.7 - Cross Site Request Forgery (CSRF) Vulnerability | David Merinas | Auto Last Youtube Video | High | 7.1 | 2025-09-05 13:45:31 | Deep Dive |
| CVE-2025-48349 | WordPress Video Gallery – Vimeo and YouTube Gallery plugin <= 1.1.7 - Cross Site Scripting (XSS) vulnerability | origincode | Video Gallery – Vimeo and YouTube Gallery | Medium | 6.5 | 2025-08-28 12:37:03 | Deep Dive |
| CVE-2025-7812 | Video Share VOD – Turnkey Video Site Builder Script <= 2.7.6 - Cross-Site Request Forgery to Command Injection | videowhisper | Video Share VOD – Turnkey Video Site Builder Script | High | 8.8 | 2025-08-28 01:46:30 | Deep Dive |
| CVE-2025-48159 | WordPress Youtube Vimeo Video Player and Slider WP Plugin <= 3.8 - Cross Site Scripting (XSS) Vulnerability | LambertGroup | Youtube Vimeo Video Player and Slider WP Plugin | High | 7.1 | 2025-08-20 08:03:30 | Deep Dive |
| CVE-2025-48170 | WordPress Universal Video Player - Addon for WPBakery Page Builder <= 3.2.1 - Cross Site Scripting (XSS) Vulnerability | LambertGroup | Universal Video Player - Addon for WPBakery Page Builder | High | 7.1 | 2025-08-20 08:03:26 | Deep Dive |
| CVE-2025-53212 | WordPress Revolution Video Player With Bottom Playlist <= 2.9.2 - Cross Site Scripting (XSS) Vulnerability | LambertGroup | Revolution Video Player With Bottom Playlist | High | 7.1 | 2025-08-20 08:03:18 | Deep Dive |
| CVE-2025-53559 | WordPress Universal Video Player - Addon for WPBakery Page Builder <= 3.2.1 - Cross Site Scripting (XSS) Vulnerability | LambertGroup | Universal Video Player - Addon for WPBakery Page Builder | High | 7.1 | 2025-08-20 08:03:15 | Deep Dive |
| CVE-2025-53562 | WordPress Universal Video Player - Addon for WPBakery Page Builder <= 3.2.1 - Cross Site Scripting (XSS) Vulnerability | LambertGroup | Universal Video Player - Addon for WPBakery Page Builder | High | 7.1 | 2025-08-20 08:03:13 | Deep Dive |
| CVE-2025-53563 | WordPress Youtube Vimeo Video Player and Slider <= 3.8 - Cross Site Scripting (XSS) Vulnerability | LambertGroup | Youtube Vimeo Video Player and Slider | High | 7.1 | 2025-08-20 08:03:13 | Deep Dive |
| CVE-2025-54044 | WordPress Elite Video Player <= 10.0.5 - Cross Site Scripting (XSS) Vulnerability | _CreativeMedia_ | Elite Video Player | High | 7.1 | 2025-08-20 08:02:58 | Deep Dive |
| CVE-2025-49432 | WordPress Ultimate Video Player Plugin <= 10.1 - Broken Access Control Vulnerability | FWDesign | Ultimate Video Player | Medium | 5.3 | 2025-08-15 15:13:14 | Deep Dive |
| CVE-2025-52771 | WordPress Video Expander Plugin <= 1.0 - Cross Site Scripting (XSS) Vulnerability | bcupham | Video Expander | Medium | 6.5 | 2025-08-14 18:22:05 | Deep Dive |
| CVE-2025-47689 | WordPress Video Blogster Lite plugin <= 1.2 - Reflected Cross Site Scripting (XSS) vulnerability | johnh10 | Video Blogster Lite | High | 7.1 | 2025-08-14 10:34:24 | Deep Dive |
| CVE-2025-6539 | Voltax Video Player <= 1.6.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via id Parameter | minutemedia | Voltax Video Player | Medium | 6.4 | 2025-07-24 09:22:20 | Deep Dive |