VYPR

Media

by Tinymce

CVEs (2)

  • CVE-2022-20325Aug 11, 2022
    risk 0.00cvss epss 0.00

    In Media, there is a possible code execution due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-186473060

  • CVE-2013-2204Jul 8, 2013
    risk 0.00cvss epss 0.03

    moxieplayer.as in Moxiecode moxieplayer, as used in the TinyMCE Media plugin in WordPress before 3.5.2 and other products, does not consider the presence of a # (pound sign) character during extraction of the QUERY_STRING, which allows remote attackers to pass arbitrary…