The 'HTML5 Video Player' WordPress Plugin, version < 2.5.25 is affected by an unauthenticated SQL injection vulnerability in the 'id' parameter in the 'get_view' function.
References
Link | Resource |
---|---|
https://www.tenable.com/security/research/tra-2024-02 | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: tenable
Published: 2024-01-30T08:26:23.960Z
Updated: 2024-01-30T08:26:23.960Z
Reserved: 2024-01-30T07:31:26.134Z
Link: CVE-2024-1061
JSON object: View
NVD Information
Status : Analyzed
Published: 2024-01-30T09:15:48.367
Modified: 2024-02-05T18:21:08.577
Link: CVE-2024-1061
JSON object: View
Redhat Information
No data.
CWE