Sonaar Mp3 Audio Player – Music Player, Podcast Player & Radio By Sonaar
6 CVEs affecting Sonaar Mp3 Audio Player – Music Player, Podcast Player & Radio By Sonaar. Latest disclosed: 2026-02-19. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-7856 | High | 8.1 | 2024-08-29 | The MP3 Audio Player – Music Player, Podcast Player & Radio by Sonaar plugin for WordPress is vulnerable to unauthorized arbitrary file deletion due to a missi… |
CVE-2024-13157 | Medium | 6.4 | 2025-01-31 | The MP3 Audio Player – Music Player, Podcast Player & Radio by Sonaar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Podcast RSS Feed in… |
CVE-2024-10268 | Medium | 6.4 | 2024-11-19 | The MP3 Audio Player – Music Player, Podcast Player & Radio by Sonaar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's sonaar… |
CVE-2024-5664 | Medium | 6.4 | 2024-07-10 | The MP3 Audio Player – Music Player, Podcast Player & Radio by Sonaar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'id' attribute… |
CVE-2026-1219 | Medium | 5.3 | 2026-02-19 | The MP3 Audio Player – Music Player, Podcast Player & Radio by Sonaar plugin for WordPress is vulnerable to Insecure Direct Object Reference in versions 4.0 to… |
CVE-2026-1249 | Medium | 5.0 | 2026-02-14 | The MP3 Audio Player – Music Player, Podcast Player & Radio by Sonaar plugin for WordPress is vulnerable to Server-Side Request Forgery in versions 5.3 to 5.10… |