16 matches found
CVE-2023-25987
Cross-Site Request Forgery CSRF vulnerability in Aleksandar Urošević My YouTube Channel plugin = 3.23.3 versions...
EUVD-2023-29874
Malicious code in bioql PyPI...
EUVD-2023-12500
Malicious code in bioql PyPI...
CVE-2022-4756
The My YouTube Channel WordPress plugin before 3.23.0 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high...
CVE-2023-25987
Cross-Site Request Forgery CSRF vulnerability in Aleksandar Urošević My YouTube Channel plugin = 3.23.3 versions...
CVE-2023-25987
Cross-Site Request Forgery CSRF vulnerability in Aleksandar Urošević My YouTube Channel plugin = 3.23.3 versions...
CVE-2023-25987
CVE-2023-25987 affects WordPress plugin My YouTube Channel (versions
PT-2023-20412 · WordPress · My Youtube Channel
Name of the Vulnerable Software and Affected Versions: My YouTube Channel plugin versions = 3.23.3 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This means an attacker could potentially trick a user into performing unintended actions on a web application th...
WordPress Plugin My YouTube Channel Cross-Site Request Forgery Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...
WordPress plugin My YouTube Channel 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...
CVE-2023-0447
The My YouTube Channel plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the clearallcache function in versions up to, and including, 3.0.12.1. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to clear t...
CVE-2023-0446
The My YouTube Channel plugin for WordPress is vulnerable to Stored Cross-Site Scripting via its settings parameters in versions up to, and including, 3.0.12.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level...
CVE-2023-0447
The My YouTube Channel plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the clearallcache function in versions up to, and including, 3.0.12.1. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to clear t...
CVE-2023-0446 My YouTube Channel <= 3.0.12.1 - Authenticated (Administrator+) Stored Cross-Site Scripting
The My YouTube Channel plugin for WordPress is vulnerable to Stored Cross-Site Scripting via its settings parameters in versions up to, and including, 3.0.12.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level...
PT-2023-16276 · WordPress · My Youtube Channel
Name of the Vulnerable Software and Affected Versions: My YouTube Channel plugin for WordPress versions up to, and including, 3.0.12.1 Description: The issue is related to Stored Cross-Site Scripting via the plugin's settings parameters due to insufficient input sanitization and output escaping...
WordPress Plugin My YouTube Channel 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...