Web-dorado Web-dorado Spider Video Player — known CVE vulnerabilities
Every CVE whose affected-product data names Web-dorado Web-dorado Spider Video Player, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2015-4352 — CVSS 5.8 (medium): Cross-site request forgery (CSRF) vulnerability in the Spider Video Player module for Drupal allows remote attackers to hijack the…
CVE-2015-4351 — CVSS 4.9 (medium): The Spider Video Player module for Drupal allows remote authenticated users with the "access Spider Video Player administration" permission…
CVE-2014-8584 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the Web Dorado Spider Video Player (aka WordPress Video Player) plugin before 1.5.2 for…