2 matches found
CVE-2023-49180
CVE-2023-49180 corresponds to a Stored Cross-Site Scripting in the WordPress plugin Automatic Youtube Video Posts (versions up to 5.2.2). The vulnerability affects the plugin via admin/settings context, allowing authenticated attackers with Administrator+ privileges to inject scripts. Public expl...
WordPress Automatic Youtube Video Posts Plugin Plugin <= 5.2.2 is vulnerable to Cross Site Scripting (XSS)
Software Automatic Youtube Video Posts Plugin Type Plugin Vulnerable versions = 5.2.2 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-49180 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 2f23eed8b8ab Credits...