Cross-Site Request Forgery (CSRF) vulnerability leading to Stored Cross-Site Scripting (XSS) discovered by Kohei Hino (Cryptography Laboratory - Tokyo Denki University) in WordPress Youtube Feeder plugin (versions <= 2.0.1).
This plugin has been closed as of July 29, 2021 and is not available for download. This closure is temporary, pending a full review.
CPE | Name | Operator | Version |
---|---|---|---|
youtube feeder | le | 2.0.1 |