2 matches found
CVE-2021-34633
Affected software: WordPress plugin YouTube Feeder (versions ≤ 2.0.1). Vulnerable component: printAdminPage function in youtube-feeder.php. Root cause: Cross-Site Request Forgery that enables an attacker to inject arbitrary web scripts. Impact: reported as CSRF leading to stored XSS; risk details...
CVE-2021-34633 Youtube Feeder <= 2.0.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting
The Youtube Feeder WordPress plugin is vulnerable to Cross-Site Request Forgery via the printAdminPage function found in the /youtube-feeder.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 2.0.1...