3 matches found
CVE-2023-25982
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Eirudo Simple YouTube Responsive plugin = 2.5 versions...
CVE-2023-25982
CVE-2023-25982 is a stored XSS vulnerability in the WordPress plugin “Eirudo Simple YouTube Responsive” <= 2.5. Technical details in connected docs show the issue affects the plugin’s handling of input via Shortcodes, enabling stored cross-site scripting under contributor+ privileges. The root...
WordPress Simple YouTube Responsive Plugin <= 2.5 is vulnerable to Cross Site Scripting (XSS)
Software Simple YouTube Responsive Type Plugin Vulnerable versions = 2.5 Fixed in 3.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-25982 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 5dfa35a7f50c Credits yuyudhn Required...