Able Player, accessible HTML5 media player, CVE-2025-46475

CVE, Research URL: CVE-2025-46475
Home page URL: Security reports for Able Player, accessible HTML5 media player
Application: Able Player, accessible HTML5 media player
Published on: Apr 24, 2025
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Joe Dolson Able Player ableplayer allows DOM-Based XSS.This issue affects Able Player: from n/a through <= 1.2.1.
Affected versions: max 1.2.2.
Status: vulnerable