VYPR
Unrated severityNVD Advisory· Published Feb 1, 2026· Updated Mar 5, 2026

PHP Melody 3.0 Persistent Cross-Site Scripting via Video Editor

CVE-2021-47913

Description

PHP Melody 3.0 contains a persistent cross-site scripting vulnerability in the video editor that allows privileged users to inject malicious scripts. Attackers can exploit the WYSIWYG editor to execute persistent scripts, potentially leading to session hijacking and application manipulation.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.