CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

RedhatCVE•added 2026/01/09 9:28 a.m.•5 views

CVE-2023-49180

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ternstyle LLC Automatic Youtube Video Posts Plugin allows Stored XSS.This issue affects Automatic Youtube Video Posts Plugin: from n/a through 5.2.2...

5.9CVSS6.6AI score0.00135EPSS

Exploits0References1

Patchstack•added 2025/02/24 3:12 p.m.•1 views

WordPress WP Video Posts plugin <= 3.5.1 - CSRF to Remote Code Execution (RCE) vulnerability

CSRF to Remote Code Execution RCE vulnerability discovered by johska in WordPress Plugin WP Video Posts versions = 3.5.1...

8.3CVSS7.5AI score0.00227EPSS

Exploits0Affected Software1

CVE•added 2023/12/15 2:47 p.m.•65 views

CVE-2023-49180

CVE-2023-49180 corresponds to a Stored Cross-Site Scripting in the WordPress plugin Automatic Youtube Video Posts (versions up to 5.2.2). The vulnerability affects the plugin via admin/settings context, allowing authenticated attackers with Administrator+ privileges to inject scripts. Public expl...

5.9CVSS6.6AI score0.00135EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2023/12/15 12:0 a.m.•3 views

PT-2023-31098 · WordPress · Automatic Youtube Video Posts Plugin

Name of the Vulnerable Software and Affected Versions: Automatic Youtube Video Posts Plugin versions through 5.2.2 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. This means that an...

5.9CVSS5.7AI score0.00135EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by