cleantalk
Vulnerabilities and Security Researches

MediaView, CVE-2025-31898

CVE, Research URL

CVE-2025-31898

Home page URL

Security reports for MediaView

Application

MediaView

Published on
Apr 03, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound MediaView allows Reflected XSS. This issue affects MediaView: from n/a through 1.1.2.
Affected versions
Min -, max 1.1.2.
Status
vulnerable
Previous vulnerability researches
Connector to CiviCRM with CiviMcRestFace (CVE-2025-31618) , Apr 01, 2025
New vulnerability
Uncanny Automator – Automate everything with the #1 automation, integration & webhooks plugin (CVE-2025-2075) , Apr 05, 2025
Blubrry PowerPress Podcasting plugin MultiSite add-on (CVE-2025-31436) , Apr 05, 2025
Wptobe-signinup (CVE-2025-30611) , Apr 05, 2025
Lexicata (CVE-2025-31900) , Apr 05, 2025
WooTumblog (CVE-2025-31729) , Apr 05, 2025