CVE-2023-49180

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ternstyle LLC Automatic Youtube Video Posts Plugin allows Stored XSS.This issue affects Automatic Youtube Video Posts Plugin: from n/a through 5.2.2...

EUVD-2014-4495

Malware in sbrugna...

EUVD-2025-4337

Malicious code in bioql PyPI...

EUVD-2025-11630

Malicious code in bioql PyPI...

CVE-2021-24512

The Video Posts Webcam Recorder WordPress plugin before 3.2.4 has an authenticated reflected cross site scripting XSS vulnerability in one of the administrative functions for handling deletion of videos...

CVE-2025-27308

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in cmstactics WP Video Posts wp-video-posts allows Reflected XSS.This issue affects WP Video Posts: from n/a through = 3.5.1...

CVE-2025-27308

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in cmstactics WP Video Posts wp-video-posts allows Reflected XSS.This issue affects WP Video Posts: from n/a through = 3.5.1...

CVE-2025-27308 WordPress WP Video Posts plugin <= 3.5.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in cmstactics WP Video Posts wp-video-posts allows Reflected XSS.This issue affects WP Video Posts: from n/a through = 3.5.1...

PT-2025-17063 · WordPress · Wp Video Posts

Name of the Vulnerable Software and Affected Versions: WP Video Posts versions 3.5.1 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Reflected XSS. This means that an attacker can inject...

CVE-2025-27298

Cross-Site Request Forgery CSRF vulnerability in cmstactics WP Video Posts wp-video-posts allows OS Command Injection.This issue affects WP Video Posts: from n/a through = 3.5.1...

CVE-2025-27298

Cross-Site Request Forgery CSRF vulnerability in cmstactics WP Video Posts wp-video-posts allows OS Command Injection.This issue affects WP Video Posts: from n/a through = 3.5.1...

WordPress WP Video Posts plugin <= 3.5.1 - CSRF to Remote Code Execution (RCE) vulnerability

CSRF to Remote Code Execution RCE vulnerability discovered by johska in WordPress Plugin WP Video Posts versions = 3.5.1...

CVE-2025-27298 WordPress WP Video Posts plugin <= 3.5.1 - CSRF to Remote Code Execution (RCE) vulnerability

Cross-Site Request Forgery CSRF vulnerability in cmstactics WP Video Posts wp-video-posts allows OS Command Injection.This issue affects WP Video Posts: from n/a through = 3.5.1...

CVE-2025-27298

CVE-2025-27298 affects the WordPress plugin WP Video Posts (versions up to 3.5.1). A CSRF vulnerability can lead to Remote Command Execution via OS command injection. Per the documents, the vulnerability is currently Unpatched (no fix version published); PatchStack describes RCE potential, but no...

WordPress plugin WP Video Posts 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site request forgery...

WordPress WP Video Posts plugin <= 3.5.1 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by johska in WordPress Plugin WP Video Posts versions = 3.5.1...

I transformed my English-language site avleonov.com

I transformed my English-language siteavleonov.com. While my Russian-language site avleonov.ru was intended as a mirror of my Telegram channel @avleonovrus, I wasn't sure how to move forward with the English-language site. I've been running it since 2016. For a long time, it was my main VM blog...

CVE-2023-49180

CVE-2023-49180 corresponds to a Stored Cross-Site Scripting in the WordPress plugin Automatic Youtube Video Posts (versions up to 5.2.2). The vulnerability affects the plugin via admin/settings context, allowing authenticated attackers with Administrator+ privileges to inject scripts. Public expl...

PT-2023-31098 · WordPress · Automatic Youtube Video Posts Plugin

Name of the Vulnerable Software and Affected Versions: Automatic Youtube Video Posts Plugin versions through 5.2.2 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. This means that an...

WordPress Plugin Automatic Youtube Video Posts Plugin Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerability...