cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score CVE-2015-9420,https://securityvulnerability.io/vulnerability/CVE-2015-9420,Cross-Site Scripting in SoundCloud is Gold Plugin for WordPress,"The SoundCloud is Gold plugin prior to version 2.3.2 for WordPress is prone to a Cross-Site Scripting (XSS) vulnerability. This flaw arises due to improper input validation in the wp-admin/admin-ajax.php file when handling the 'action=get_soundcloud_player' id parameter. An attacker can exploit this vulnerability to inject malicious scripts into web pages viewed by users, potentially leading to unauthorized actions or data theft.",Wordpress,Soundcloud Is Gold,6.1,MEDIUM,0.0016499999910593033,false,,false,false,false,,,false,false,,2019-09-26T00:06:56.000Z,0 CVE-2012-6624,https://securityvulnerability.io/vulnerability/CVE-2012-6624,,Cross-site scripting (XSS) vulnerability in the SoundCloud Is Gold plugin 2.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the width parameter in a soundcloud_is_gold_player_preview action to wp-admin/admin-ajax.php.,Wordpress,Soundcloud Is Gold,,,0.0062699997797608376,false,,false,false,false,,,false,false,,2014-01-16T21:00:00.000Z,0