cleantalk
Vulnerabilities and Security Researches

PlayerJS, CVE-2025-58651

CVE, Research URL

CVE-2025-58651

Home page URL

Security reports for PlayerJS

Application

PlayerJS

Published on
Sep 23, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PlayerJS PlayerJS playerjs allows DOM-Based XSS.This issue affects PlayerJS: from n/a through <= 2.24.
Affected versions
max 2.24.
Status
vulnerable
Previous vulnerability researches
Maps for WP (CVE-2025-57952) , Apr 24, 2026
Maps for WP (CVE-2025-32179) , Apr 06, 2025
Maps for WP (CVE-2024-13648) , Feb 22, 2025
New vulnerability
Smart Docs (CVE-2025-9333) , Apr 25, 2026
WPKoi Templates for Elementor (CVE-2025-57999) , Apr 25, 2026
HT Mega &#8211; Absolute Addons For Elementor (CVE-2026-4106) , Apr 25, 2026
Verowa Connect (CVE-2025-58257) , Apr 25, 2026
Image Editor by Pixo (CVE-2025-58232) , Apr 25, 2026