CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Happyworm: >> Jplayer >> 2.2.24 Security Vulnerabilities

CVE-2013-2023

Cross-site scripting (XSS) vulnerability in actionscript/Jplayer.as in the Flash SWF component (jplayer.swf) in jPlayer before 2.3.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly related to incomplete blacklists, a different vulnerability than CVE-2013-1942 and CVE-2013-2022.

CVSS Score

4.3

EPSS Score

0.006

Published

2013-08-15

Page 1

Vulnerabilities

Vulnerable Software

Happyworm: >> Jplayer >> 2.2.24 Security Vulnerabilities

Products

Pricing

Contact Us