cleantalk
Vulnerabilities and Security Researches

Videopack, CVE-2025-54016

CVE, Research URL

CVE-2025-54016

Home page URL

Security reports for Videopack

Application

Videopack

Published on
Jul 16, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Kyle Gilman Videopack allows DOM-Based XSS. This issue affects Videopack: from n/a through 4.10.3.
Affected versions
Min -, max 4.10.4.
Status
vulnerable
Previous vulnerability researches
Videopack (CVE-2025-54016) , Jul 18, 2025
Videopack (CVE-2012-1786) , Jun 06, 2024
Videopack (CVE-2012-1785) , Jun 06, 2024
Videopack (CVE-2022-4974) , Nov 15, 2024
New vulnerability
Stop User Enumeration (CVE-2025-4302) , Jul 19, 2025
WP Pipes (CVE-2025-28982) , Jul 19, 2025
LightBox Block (CVE-2025-54051) , Jul 19, 2025
Malcure Malware Scanner — #1 Toolset for WordPress Malware Removal (CVE-2025-6043) , Jul 19, 2025
Ruven Themes: Shortcodes (CVE-2025-7648) , Jul 19, 2025