Security Advisory
CVE-2025-27325
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) vulnerability in Bruce Video.js HLS Player videojs-hls-player allows DOM-Based XSS.This issue affects Video.js HLS Player: from n/a through <= 1.0.2.