Lucene search
+L

33 matches found

Patchstack
Patchstack
added 2024/12/03 2:38 p.m.4 views

WordPress Responsive Videos plugin <= 2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting vulnerability discovered by zakaria in WordPress Plugin Responsive Videos versions = 2.1...

6.4CVSS5.7AI score0.00317EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/10/11 1:15 p.m.9 views

CVE-2024-9346

The Embed videos and respect privacy plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'v' parameter in all versions up to, and including, 1.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

6.1CVSS0.00354EPSS
Exploits0References3
NVD
NVD
added 2023/10/16 9:15 a.m.14 views

CVE-2023-45656

Cross-Site Request Forgery CSRF vulnerability in Kevin Weber Lazy Load for Videos plugin = 2.18.2 versions...

8.8CVSS6.5AI score0.00208EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/10/16 12:0 a.m.6 views

WordPress Plugin Lazy Load for Videos Cross-Site Request Forgery Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. WordPress Plugin Lazy Load for Videos suffe...

8.8CVSS6.5AI score0.00208EPSS
Exploits0References2
NVD
NVD
added 2023/08/14 3:15 p.m.28 views

CVE-2023-30752

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Silvia Pfeiffer and Andrew Nimmo External Videos plugin = 2.0.1 versions...

5.9CVSS5.4AI score0.00369EPSS
Exploits0References1
OSV
OSV
added 2023/08/14 3:15 p.m.5 views

CVE-2023-30752

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Silvia Pfeiffer and Andrew Nimmo External Videos plugin = 2.0.1 versions...

4.8CVSS7.3AI score0.00369EPSS
Exploits0References1
NVD
NVD
added 2023/06/15 2:15 p.m.36 views

CVE-2023-25055

Cross-Site Request Forgery CSRF vulnerability in Amit Agarwal Google XML Sitemap for Videos plugin = 2.6.1 versions...

8.8CVSS5.9AI score0.00256EPSS
Exploits0References1
OSV
OSV
added 2023/06/15 2:15 p.m.3 views

CVE-2023-25055

Cross-Site Request Forgery CSRF vulnerability in Amit Agarwal Google XML Sitemap for Videos plugin = 2.6.1 versions...

8.8CVSS7.3AI score0.00256EPSS
Exploits0References1
CVE
CVE
added 2023/06/15 1:24 p.m.55 views

CVE-2023-25055

CVE-2023-25055 is a CSRF vulnerability in the WordPress plugin Google XML Sitemap for Videos (versions &lt;= 2.6.1). The issue stems from cross-site requests made by unauthenticated users to sitemap-related actions (e.g., video_sitemap_generate) that can be triggered through normal user interacti...

8.8CVSS6.5AI score0.00256EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/06/15 12:0 a.m.10 views

PT-2023-19901 · Unknown · Amit Agarwal Google Xml Sitemap For Images

Name of the Vulnerable Software and Affected Versions: Amit Agarwal Google XML Sitemap for Videos plugin versions = 2.6.1 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended...

8.8CVSS8.4AI score0.00256EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/06/15 12:0 a.m.4 views

WordPress Plugin Amit Agarwal Google XML Sitemap for Videos 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress Plugin Amit Agarw...

8.8CVSS7.7AI score0.00256EPSS
Exploits0References2
Patchstack
Patchstack
added 2023/03/14 12:0 a.m.12 views

WordPress Google XML Sitemap for Videos Plugin <= 2.6.1 is vulnerable to Cross Site Request Forgery (CSRF)

Software Google XML Sitemap for Videos Type Plugin Vulnerable versions = 2.6.1 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-25055 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 7a021f843b5d Credits Mika...

8.8CVSS6.7AI score0.00256EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2019/06/17 12:0 a.m.1 views

WordPress Related YouTube Videos Plugin Cross-Site Request Forgery Vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.Related YouTube Videos plugin is a plugin used to embed YouTube videos in pages. A cross-site request forgery vulnerability exists in...

8.8CVSS6.7AI score0.01017EPSS
Exploits0References1
Rows per page
Query Builder