WordPress plugin Docus – YouTube Video Playlist 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...

EUVD-2025-9848

Malicious code in bioql PyPI...

EUVD-2023-49944

Malicious code in bioql PyPI...

EUVD-2025-14747

Malicious code in bioql PyPI...

CVE-2025-32183

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Galaxy Weblinks Video Playlist For YouTube video-playlist-for-youtube allows Stored XSS.This issue affects Video Playlist For YouTube: from n/a through = 6.8...

CVE-2025-31581

Missing Authorization vulnerability in Sandeep Kumar WP Video Playlist wp-video-playlist allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Video Playlist: from n/a through = 1.1.2...

CVE-2025-32183

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Galaxy Weblinks Video Playlist For YouTube video-playlist-for-youtube allows Stored XSS.This issue affects Video Playlist For YouTube: from n/a through = 6.7.1...

CVE-2025-32183

CVE-2025-32183 affects the Video Playlist For YouTube WordPress plugin. The vulnerability is described as a Stored Cross-Site Scripting (XSS) due to improper input neutralization during web page generation, impacting Video Playlist For YouTube versions up to 6.6 (per the initial description). Con...

CVE-2025-32183 WordPress Video Playlist For YouTube plugin <= 6.7.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Galaxy Weblinks Video Playlist For YouTube video-playlist-for-youtube allows Stored XSS.This issue affects Video Playlist For YouTube: from n/a through = 6.7.1...

CVE-2025-32183 WordPress Video Playlist For YouTube plugin <= 6.6 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Galaxy Weblinks Video Playlist For YouTube allows Stored XSS. This issue affects Video Playlist For YouTube: from n/a through 6.6...

PT-2025-14965 · Unknown · Galaxy Weblinks Video Playlist For Youtube

Name of the Vulnerable Software and Affected Versions: Galaxy Weblinks Video Playlist For YouTube versions through 6.6 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. This means that an...

WordPress plugin Video Playlist For YouTube 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

CVE-2025-31581

Missing Authorization vulnerability in Sandeep Kumar WP Video Playlist wp-video-playlist allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Video Playlist: from n/a through = 1.1.2...

CVE-2025-31581

No technical details about CVE-2025-31581 are present in the provided documents. The Initial Description notes Missing Authorization in WP Video Playlist, but lacks specifics on vulnerable component/version/impact. Monitor for official advisories for concrete data.

PT-2025-14725 · WordPress · Sandeep Kumar Wp Video Playlist

Name of the Vulnerable Software and Affected Versions: Sandeep Kumar WP Video Playlist versions 1.1.2 and earlier Description: The issue is related to a Missing Authorization vulnerability, allowing exploitation of incorrectly configured access control security levels. Recommendations: For Sandee...

WordPress plugin WP Video Playlist 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

WordPress WP Video Playlist 1.1.1 Cross Site Scripting

Exploit Title: Wordpress Plugin WP Video Playlist 1.1.1 - Stored Cross-Site Scripting XSS Date: 12 April 2024 Exploit Author: Erdemstar Vendor: https://wordpress.com/ Version: 1.1.1 Proof Of Concept: 1. Click Add Video part and enter the XSS payload as below into the first input of form or Reques...

Wordpress Plugin WP Video Playlist 1.1.1 - Stored Cross-Site Scripting (XSS)

Exploit Title: Wordpress Plugin WP Video Playlist 1.1.1 - Stored Cross-Site Scripting XSS Date: 12 April 2024 Exploit Author: Erdemstar Vendor: https://wordpress.com/ Version: 1.1.1 Proof Of Concept: 1. Click Add Video part and enter the XSS payload as below into the first input of form or Reques...

CVE-2023-45653

Cross-Site Request Forgery CSRF vulnerability in Galaxy Weblinks Video Playlist For YouTube plugin = 6.0 versions...

CVE-2023-45653

Cross-Site Request Forgery CSRF vulnerability in Galaxy Weblinks Video Playlist For YouTube plugin = 6.0 versions...