cleantalk
Vulnerabilities and Security Researches

vooPlayer v4, CVE-2025-22565

CVE, Research URL

CVE-2025-22565

Home page URL

Security reports for vooPlayer v4

Application

vooPlayer v4

Published on
Apr 17, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Bill Zimmerman vooPlayer v4 allows Reflected XSS. This issue affects vooPlayer v4: from n/a through 4.0.4.
Affected versions
Min -, max 4.0.4.
Status
vulnerable
Previous vulnerability researches
Ray Enterprise Translation (45862dcf5de38ecdacc64eb0bc59badcb317be6c) , Jun 07, 2024
Ray Enterprise Translation (CVE-2025-31030) , Apr 14, 2025
New vulnerability
All push notification for WP (CVE-2025-32546) , Apr 19, 2025
Hotel Booking (CVE-2025-39526) , Apr 19, 2025
TableOn – WordPress Posts Table Filterable  (CVE-2025-32592) , Apr 19, 2025
WP Social Bookmarking (CVE-2025-39422) , Apr 19, 2025
Anthologize (CVE-2025-39437) , Apr 19, 2025