Lucene search

CVE-2024-6256

🗓️ 11 Jul 2024 07:05:15Reported by [email protected]Type

The Feeds for YouTube plugin for WordPress is vulnerable to Stored Cross-Site Scriptin

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 5
Patchstack	WordPress Feeds for YouTube Plugin <= 2.2.1 is vulnerable to Cross Site Scripting (XSS)	11 Jul 202400:00	–	patchstack
Vulnrichment	CVE-2024-6256 Feeds for YouTube (YouTube video, channel, and gallery plugin) <= 2.2.1 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting	11 Jul 202406:43	–	vulnrichment
CVE	CVE-2024-6256	11 Jul 202407:15	–	cve
Cvelist	CVE-2024-6256 Feeds for YouTube (YouTube video, channel, and gallery plugin) <= 2.2.1 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting	11 Jul 202406:43	–	cvelist
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (July 8, 2024 to July 14, 2024)	18 Jul 202415:33	–	wordfence

Nvd

Node

smashballoon feeds_for_youtubeRange<2.2.2wordpress

Source	Link
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/228fab65-e5c2-41d1-ad41-fac4862894f2
plugins	www.plugins.trac.wordpress.org/changeset/3107577/
plugins	www.plugins.trac.wordpress.org/browser/feeds-for-youtube/trunk/js/sb-youtube.js

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo