5 matches found
CVE-2024-13393
creationtimestamp| type| source ---|---|--- 2025-01-18 07:16:14+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfyraqyhek2t 2025-01-18 07:23:39+00:00| seen| https://infosec.exchange/users/cve/statuses/113848157404077718 2025-01-18 07:39:19+00:00| seen|...
CVE-2024-13393
The Video Share VOD – Turnkey Video Site Builder Script plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'videowhispervideos' shortcode in all versions up to, and including, 2.6.31 due to insufficient input sanitization and output escaping on user supplied...
CVE-2024-13393 Video Share VOD – Turnkey Video Site Builder Script <= 2.6.31 - Authenticated (Contributor+) Stored Cross-Site Scripting
The Video Share VOD – Turnkey Video Site Builder Script plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'videowhispervideos' shortcode in all versions up to, and including, 2.6.31 due to insufficient input sanitization and output escaping on user supplied...
CVE-2024-13393 Video Share VOD – Turnkey Video Site Builder Script <= 2.6.31 - Authenticated (Contributor+) Stored Cross-Site Scripting
The Video Share VOD – Turnkey Video Site Builder Script plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'videowhispervideos' shortcode in all versions up to, and including, 2.6.31 due to insufficient input sanitization and output escaping on user supplied...
CVE-2024-13393
CVE-2024-13393 affects the Video Share VOD – Turnkey Video Site Builder Script WordPress plugin. The vulnerability is Stored Cross-Site Scripting via the videowhisper_videos shortcode in all versions up to 2.6.31, caused by insufficient input sanitization and output escaping of user-supplied attr...