cbcvebase.

Thanhtungtnt Video List Manager vulnerabilities

4 known vulnerabilities affecting thanhtungtnt/video_list_manager.

Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH2MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2025-52831P2CRITICALCVSS 9.3≤ 1.72025-07-04
CVE-2025-52831 [CRITICAL] CWE-89 CVE-2025-52831: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in thanhtungtnt Video List Manager video-list-manager allows SQL Injection.This issue affects Video List Manager: from n/a through <= 1.7.
nvd
CVE-2025-52821P3HIGHCVSS 8.5≤ 1.72025-06-20
CVE-2025-52821 [HIGH] CWE-89 CVE-2025-52821: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in thanhtungtnt Video List Manager video-list-manager allows SQL Injection.This issue affects Video List Manager: from n/a through <= 1.7.
nvd
CVE-2025-49986P4MEDIUMCVSS 5.3≤ 1.72025-06-20
CVE-2025-49986 [MEDIUM] CWE-862 CVE-2025-49986: Missing Authorization vulnerability in thanhtungtnt Video List Manager video-list-manager allows Acc Missing Authorization vulnerability in thanhtungtnt Video List Manager video-list-manager allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Video List Manager: from n/a through <= 1.7.
nvd
CVE-2025-52776P4HIGHCVSS 7.1≤ 1.72025-07-04
CVE-2025-52776 [HIGH] CWE-79 CVE-2025-52776: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability i Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in thanhtungtnt Video List Manager video-list-manager allows Stored XSS.This issue affects Video List Manager: from n/a through <= 1.7.
nvd
Thanhtungtnt Video List Manager vulnerabilities | cvebase