CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

18 matches found

NVD•added 2026/01/28 6:15 a.m.•8 views

CVE-2025-8072

The Target Video Easy Publish plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘placeholderimg’ parameter in all versions up to, and including, 3.8.8 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

6.4CVSS0.00245EPSS

Exploits0References4

Vulnrichment•added 2026/01/28 5:30 a.m.•3 views

CVE-2025-8072 Target Video Easy Publish <= 3.8.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via placeholder_img Parameter

6.4CVSS6AI score0.00245EPSS

Exploits0References4

CVE•added 2026/01/28 5:30 a.m.•20 views

CVE-2025-8072

CVE-2025-8072 affects the WordPress plugin Target Video Easy Publish (versions

6.4CVSS6AI score0.00245EPSS

Exploits0References4

Patchstack•added 2026/01/28 1:33 a.m.•8 views

WordPress Target Video Easy Publish plugin <= 3.8.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via placeholder_img Parameter vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via placeholderimg Parameter vulnerability discovered by Peter Thaleikis in WordPress Plugin Target Video Easy Publish versions = 3.8.8...

6.4CVSS5.9AI score0.00245EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2025/09/09 4:25 p.m.•4 views

CVE-2025-32688 WordPress Target Video Easy Publish plugin <= 3.8.9 - Arbitrary Code Execution vulnerability

Missing Authorization vulnerability in Nebojsa Target Video Easy Publish brid-video-easy-publish.This issue affects Target Video Easy Publish: from n/a through = 3.8.9...

5.4CVSS8.6AI score0.00199EPSS

Exploits0References1

NVD•added 2025/06/18 10:15 a.m.•6 views

CVE-2025-5237

The Target Video Easy Publish plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘width’ parameter in all versions up to, and including, 3.8.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

6.4CVSS0.00227EPSS

Exploits0References4

Vulnrichment•added 2025/06/18 9:21 a.m.•4 views

CVE-2025-5237 Target Video Easy Publish <= 3.8.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via width Parameter

6.4CVSS5.7AI score0.00227EPSS

Exploits0References4

Cvelist•added 2025/06/18 9:21 a.m.•8 views

CVE-2025-5237 Target Video Easy Publish <= 3.8.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via width Parameter

6.4CVSS0.00227EPSS

Exploits0References4

Patchstack•added 2025/06/18 8:2 a.m.•7 views

WordPress Target Video Easy Publish plugin <= 3.8.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via width Parameter vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via width Parameter vulnerability discovered by Peter Thaleikis in WordPress Plugin Target Video Easy Publish versions = 3.8.5...

6.4CVSS5.5AI score0.00227EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2025/06/18 12:0 a.m.•3 views

PT-2025-25857 · WordPress · Target Video Easy Publish

Name of the Vulnerable Software and Affected Versions: Target Video Easy Publish plugin for WordPress versions up to, and including, 3.8.5 Description: The issue is related to Stored Cross-Site Scripting due to insufficient input sanitization and output escaping. This allows authenticated attacke...

6.4CVSS5.5AI score0.00227EPSS

Exploits0References6

RedhatCVE•added 2025/05/23 7:34 a.m.•6 views

CVE-2024-13561

The Target Video Easy Publish plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's bridoverrideyt shortcode in all versions up to, and including, 3.8.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS5.9AI score0.00288EPSS

Exploits0References1

Positive Technologies•added 2025/04/22 12:0 a.m.•4 views

PT-2025-17586

Name of the Vulnerable Software and Affected Versions: Target Video Easy Publish versions through 3.8.8 Description: A missing authorization issue exists in Sovica Target Video Easy Publish. The vulnerability is related to a privilege escalation within the WordPress Shortcode do shortcode functio...

5.4CVSS8.7AI score0.00199EPSS

Exploits0References4

Patchstack•added 2025/04/17 8:1 a.m.•8 views

WordPress Target Video Easy Publish plugin <= 3.8.9 - Arbitrary Code Execution vulnerability

Arbitrary Code Execution vulnerability discovered by Phan Trong Quan - VNPT Cyber Immunity in WordPress Plugin Target Video Easy Publish versions = 3.8.9...

5.4CVSS8.6AI score0.00199EPSS

Exploits0Affected Software1

Patchstack•added 2025/01/29 12:55 p.m.•6 views

WordPress Target Video Easy Publish plugin <= 3.8.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via brid_override_yt Shortcode vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via bridoverrideyt Shortcode vulnerability discovered by SOPROBRO in WordPress Plugin Target Video Easy Publish versions = 3.8.3...

6.4CVSS5.8AI score0.00288EPSS

Exploits0References1Affected Software1

Cvelist•added 2025/01/29 11:10 a.m.•11 views

CVE-2024-13561 Target Video Easy Publish <= 3.8.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via brid_override_yt Shortcode

6.4CVSS0.00288EPSS

Exploits0References4

CNNVD•added 2025/01/29 12:0 a.m.•4 views

WordPress plugin Target Video Easy Publish 跨站脚本漏洞

WordPress and the WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin ... A cross-site scripting...

6.4CVSS8AI score0.00288EPSS

Exploits0References4

NVD•added 2025/01/25 8:15 a.m.•8 views

CVE-2024-12076

The Target Video Easy Publish plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.8.3. This is due to missing or incorrect nonce validation on the resynccarousel, seeksnapshot, uploadedcc, and removecc functions. This makes it possible for...

6.1CVSS0.00318EPSS

Exploits0References7

Cvelist•added 2025/01/25 7:24 a.m.•15 views

CVE-2024-12076 Target Video Easy Publish <= 3.8.3 - Cross-Site Request Forgery to Stored Cross-Site Scripting

6.1CVSS0.00318EPSS

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by