cleantalk
Vulnerabilities and Security Researches

Legacy ePlayer, CVE-2025-22572

CVE, Research URL

CVE-2025-22572

Home page URL

Security reports for Legacy ePlayer

Application

Legacy ePlayer

Published on
Jan 07, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in brianmiyaji Legacy ePlayer allows Stored XSS.This issue affects Legacy ePlayer: from n/a through 0.9.9.
Affected versions
max 0.9.9.
Status
vulnerable
Previous vulnerability researches
Legacy ePlayer (CVE-2025-22572) , Jan 09, 2025
New vulnerability
Visual Website Collaboration, Feedback & Project Management – Atarim (CVE-2026-25019) , Feb 27, 2026
Visual Website Collaboration, Feedback & Project Management – Atarim (CVE-2025-67993) , Feb 27, 2026
Photos and Files Contest Gallery – Contact Form, Upload Form, Social Share and Voting Plugin for WordPress (CVE-2026-24965) , Feb 27, 2026
Nelio AB Testing (CVE-2026-25378) , Feb 27, 2026
VK All in One Expansion Unit (CVE-2025-11737) , Feb 27, 2026