VYPR

Wp Smart Tv

by WordPress

Source repositories

CVEs (2)

  • CVE-2024-12818MedJan 15, 2025
    risk 0.42cvss 6.4epss 0.00

    The WP Smart TV plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'tv-video-player' shortcode in all versions up to, and including, 2.1.8 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it…

  • CVE-2025-55972Oct 3, 2025
    risk 0.00cvss epss 0.01

    A TCL Smart TV running a vulnerable UPnP/DLNA MediaRenderer implementation is affected by a remote, unauthenticated Denial of Service (DoS) condition. By sending a flood of malformed or oversized SetAVTransportURI SOAP requests to the UPnP control endpoint, an attacker can cause…