Lucene search

K
patchstackUnknownPATCHSTACK:7D175C0C5B8ABC379422291D844AF542
HistoryMar 21, 2023 - 12:00 a.m.

WordPress GamiPress – Youtube integration Plugin <= 1.0.7 is vulnerable to Cross Site Scripting (XSS)

2023-03-2100:00:00
Unknown
patchstack.com
1
wordpress
gamipress
youtube integration
plugin
cross site scripting
vulnerability
patch priority
medium
cvss severity
developer
contributor
published
mitigate

AI Score

5.9

Confidence

High

Software

GamiPress – Youtube integration

Type

Plugin

Vulnerable versions

<= 1.0.7

Fixed in

1.0.8

OWASP Top 10

A7: Cross-Site Scripting (XSS)

Classification

Cross Site Scripting (XSS)

CVE

N/A

Patch priority

Medium

CVSS severity

Medium (6.5)

Developer

Claim ownership

PSID

1fad36729cfa

Credits

Unknown

Required privilege

Contributor

Published

21 March, 2023

Plugin Changelog Vulnerability details

Remove and replace plugin Expand full details Have additional information or questions about this entry? Let us know.

Solution

We advise to mitigate or resolve the vulnerability immediately.

Affected configurations

Vulners
Node
-gamipress_–_youtube_integrationRange1.0.7
VendorProductVersionCPE
-gamipress_–_youtube_integration*cpe:2.3:a:-:gamipress_–_youtube_integration:*:*:*:*:*:*:*:*

AI Score

5.9

Confidence

High