cleantalk
Vulnerabilities and Security Researches

Legacy ePlayer, CVE-2025-22572

CVE, Research URL

CVE-2025-22572

Home page URL

Security reports for Legacy ePlayer

Application

Legacy ePlayer

Published on
Jan 07, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in brianmiyaji Legacy ePlayer allows Stored XSS.This issue affects Legacy ePlayer: from n/a through 0.9.9.
Affected versions
max 0.9.9.
Status
vulnerable
Previous vulnerability researches
Legacy ePlayer (CVE-2025-22572) , Jan 09, 2025
Live Scores for SportsPress (CVE-2022-4974) , Nov 16, 2024
Live Scores for SportsPress (a81f580827e7b58d80d33fa9199395d57beb38e7) , Jun 07, 2024
SportsPress – Sports Club & League Manager (CVE-2024-3986) , Aug 01, 2024
SportsPress – Sports Club & League Manager (CVE-2021-24578) , Jun 07, 2024
New vulnerability
Woo File Dropzone (CVE-2025-68862) , Feb 27, 2026
130+ Widgets | Best Addons For Elementor – FREE (CVE-2025-69312) , Feb 27, 2026
YaMaps for WordPress Plugin (CVE-2025-14851) , Feb 27, 2026
Tickera – WordPress Event Ticketing (CVE-2025-12356) , Feb 27, 2026
Responsive Lightbox & Gallery (CVE-2025-15386) , Feb 27, 2026