cleantalk
Vulnerabilities and Security Researches

Shoutcast and Icecast HTML5 Web Radio Player by YesStreaming.com, CVE-2025-23854

CVE, Research URL

CVE-2025-23854

Home page URL

Security reports for Shoutcast and Icecast HTML5 Web Radio Player by YesStreaming.com

Application

Shoutcast and Icecast HTML5 Web Radio Player by YesStreaming.com

Published on
Jan 17, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in YesStreaming.com Shoutcast and Icecast Internet Radio Hosting Shoutcast and Icecast HTML5 Web Radio Player by YesStreaming.com allows Stored XSS.This issue affects Shoutcast and Icecast HTML5 Web Radio Player by YesStreaming.com: from n/a through 3.3.
Affected versions
max 3.3.
Status
vulnerable
Previous vulnerability researches
Shoutcast and Icecast HTML5 Web Radio Player by YesStreaming.com (CVE-2025-23854) , Jan 18, 2025
Shoutcast Icecast HTML5 Radio Player (CVE-2024-8666) , Oct 26, 2024
Radio Player – Live Shoutcast, Icecast and Any Audio Stream Player for WordPress (971fb8ca82e479cf299b6fe3febbcab5da5854dc) , Jun 07, 2024
Radio Player – Live Shoutcast, Icecast and Any Audio Stream Player for WordPress (CVE-2024-34753) , Jun 07, 2024
Radio Player – Live Shoutcast, Icecast and Any Audio Stream Player for WordPress (CVE-2024-32506) , Jun 07, 2024
New vulnerability
Unlimited Elements For Elementor (Free Widgets, Addons, Templates) (CVE-2024-13362) , May 02, 2026
POST SMTP – The #1 WordPress SMTP Plugin with Advanced Email Logging and Delivery Failure Notifications (CVE-2024-13362) , May 02, 2026
Elementor Website Builder – More than Just a Page Builder (CVE-2026-6127) , May 02, 2026
WPGraphQL (CVE-2026-40762) , May 02, 2026
Gallery Blocks with Lightbox. Image Gallery, (HTML5 video , YouTube, Vimeo) Video Gallery and Lightbox for native gallery (CVE-2024-13362) , May 02, 2026