Vulnerabilities (CVE)

Filtered by vendor Jordan De Laune Subscribe
Filtered by product Mp3 Player
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2013-1971 2 Drupal, Jordan De Laune 2 Drupal, Mp3 Player 2024-11-21 2.1 LOW N/A
Cross-site scripting (XSS) vulnerability in the MP3 Player module for Drupal 6.x allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via the file name of a MP3 file.