VYPR

Advanced Dewplayer

by WordPress

Source repositories

CVEs (2)

  • CVE-2025-30592MedMar 24, 2025
    Westerndeal
    Advanced Dewplayer
    risk 0.34cvss 5.3epss 0.00

    Missing Authorization vulnerability in WesternDeal Advanced Dewplayer advanced-dewplayer allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Advanced Dewplayer: from n/a through <= 1.6.

  • CVE-2013-7240Jan 3, 2014
    WordPress
    WordPress
    risk 0.06cvss epss 0.20

    Directory traversal vulnerability in download-file.php in the Advanced Dewplayer plugin 1.2 for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the dew_file parameter.