CVE-2021-47913

Publication date

2026-02-01 12:15:48

Family

VulnCheck

State

PUBLISHED

Description

PHP Melody 3.0 contains a persistent cross-site scripting vulnerability in the video editor that allows privileged users to inject malicious scripts. Attackers can exploit the WYSIWYG editor to execute persistent scripts, potentially leading to session hijacking and application manipulation.