Lucene search
K

27 matches found

Patchstack
Patchstack
added 2025/01/29 12:55 p.m.7 views

WordPress Target Video Easy Publish plugin <= 3.8.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via brid_override_yt Shortcode vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via bridoverrideyt Shortcode vulnerability discovered by SOPROBRO in WordPress Plugin Target Video Easy Publish versions = 3.8.3...

6.4CVSS5.8AI score0.00301EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/01/29 11:10 a.m.12 views

CVE-2024-13561 Target Video Easy Publish <= 3.8.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via brid_override_yt Shortcode

The Target Video Easy Publish plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's bridoverrideyt shortcode in all versions up to, and including, 3.8.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS0.00301EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/01/29 11:10 a.m.3 views

CVE-2024-13561 Target Video Easy Publish <= 3.8.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via brid_override_yt Shortcode

The Target Video Easy Publish plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's bridoverrideyt shortcode in all versions up to, and including, 3.8.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS7.4AI score0.00301EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/01/29 12:0 a.m.8 views

WordPress plugin Target Video Easy Publish 跨站脚本漏洞

WordPress and the WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin ... A cross-site scripting...

6.4CVSS8AI score0.00301EPSS
Exploits0References4
Patchstack
Patchstack
added 2025/01/27 7:53 a.m.4 views

WordPress Target Video Easy Publish plugin <= 3.8.3 - Cross-Site Request Forgery to Stored Cross-Site Scripting vulnerability

Cross-Site Request Forgery to Stored Cross-Site Scripting vulnerability discovered by vgo0 in WordPress Plugin Target Video Easy Publish versions = 3.8.3...

6.1CVSS5.9AI score0.00318EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2025/01/25 8:15 a.m.8 views

CVE-2024-12076

The Target Video Easy Publish plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.8.3. This is due to missing or incorrect nonce validation on the resynccarousel, seeksnapshot, uploadedcc, and removecc functions. This makes it possible for...

6.1CVSS0.00318EPSS
Exploits0References7
Cvelist
Cvelist
added 2025/01/25 7:24 a.m.16 views

CVE-2024-12076 Target Video Easy Publish <= 3.8.3 - Cross-Site Request Forgery to Stored Cross-Site Scripting

The Target Video Easy Publish plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.8.3. This is due to missing or incorrect nonce validation on the resynccarousel, seeksnapshot, uploadedcc, and removecc functions. This makes it possible for...

6.1CVSS0.00318EPSS
Exploits0References7
Rows per page
Query Builder