cleantalk
Vulnerabilities and Security Researches

PlayerJS, CVE-2025-58651

CVE, Research URL

CVE-2025-58651

Home page URL

Security reports for PlayerJS

Application

PlayerJS

Published on
Sep 23, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PlayerJS PlayerJS playerjs allows DOM-Based XSS.This issue affects PlayerJS: from n/a through <= 2.24.
Affected versions
max 2.24.
Status
vulnerable
Previous vulnerability researches
Printcart Web to Print Product Designer for WooCommerce (CVE-2025-24780) , Jul 05, 2025
Printcart Web to Print Product Designer for WooCommerce (CVE-2025-47641) , May 20, 2025
Printcart Web to Print Product Designer for WooCommerce (CVE-2025-57917) , Apr 25, 2026
Printcart Web to Print Product Designer for WooCommerce (CVE-2025-47640) , May 27, 2025
New vulnerability
Ultra Addons Lite for Elementor (CVE-2025-9077) , Apr 25, 2026
VikRestaurants Table Reservations and Take-Away (CVE-2025-57962) , Apr 25, 2026
VikRestaurants Table Reservations and Take-Away (CVE-2025-57968) , Apr 25, 2026
RestroPress &#8211; Online Food Ordering System (CVE-2025-9209) , Apr 25, 2026
Smart Docs (CVE-2025-9333) , Apr 25, 2026