cleantalk
Vulnerabilities and Security Researches

Shoutcast and Icecast HTML5 Web Radio Player by YesStreaming.com, CVE-2025-23854

CVE, Research URL

CVE-2025-23854

Home page URL

Security reports for Shoutcast and Icecast HTML5 Web Radio Player by YesStreaming.com

Application

Shoutcast and Icecast HTML5 Web Radio Player by YesStreaming.com

Published on
Jan 17, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in YesStreaming.com Shoutcast and Icecast Internet Radio Hosting Shoutcast and Icecast HTML5 Web Radio Player by YesStreaming.com allows Stored XSS.This issue affects Shoutcast and Icecast HTML5 Web Radio Player by YesStreaming.com: from n/a through 3.3.
Affected versions
max 3.3.
Status
vulnerable
Previous vulnerability researches
Shoutcast and Icecast HTML5 Web Radio Player by YesStreaming.com (CVE-2025-23854) , Jan 18, 2025
New vulnerability
Advanced Product Fields (Product Addons) for WooCommerce (CVE-2026-39499) , May 02, 2026
Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders (CVE-2026-25440) , May 02, 2026
Unlimited Elements For Elementor (Free Widgets, Addons, Templates) (CVE-2024-13362) , May 02, 2026
POST SMTP – The #1 WordPress SMTP Plugin with Advanced Email Logging and Delivery Failure Notifications (CVE-2024-13362) , May 02, 2026
Elementor Website Builder – More than Just a Page Builder (CVE-2026-6127) , May 02, 2026