Vulnerabilities > Mediaelementjs

DATE	CVE	VULNERABILITY TITLE	RISK
2016-05-22	CVE-2016-4567	Cross-site Scripting vulnerability in multiple products Cross-site scripting (XSS) vulnerability in flash/FlashMediaElement.as in MediaElement.js before 2.21.0, as used in WordPress before 4.5.2, allows remote attackers to inject arbitrary web script or HTML via an obfuscated form of the jsinitfunction parameter, as demonstrated by "jsinitfunctio%gn." network mediaelementjs wordpress CWE-79	4.3
2014-02-05	CVE-2013-1967	Cross-Site Scripting vulnerability in multiple products Cross-site scripting (XSS) vulnerability in flashmediaelement.swf in MediaElement.js before 2.11.2, as used in ownCloud Server 5.0.x before 5.0.5 and 4.5.x before 4.5.10, allows remote attackers to inject arbitrary web script or HTML via the file parameter. network mediaelementjs owncloud CWE-79	4.3

Vulnerabilities > Mediaelementjs {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Mediaelementjs"}]}