Lucene search
+L

10 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-19340

Malicious code in bioql PyPI...

4.3CVSS6.5AI score0.0014EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/06/29 2:26 p.m.9 views

CVE-2025-53261

Cross-Site Request Forgery CSRF vulnerability in macbookandrew WP YouTube Live wp-youtube-live allows Cross Site Request Forgery.This issue affects WP YouTube Live: from n/a through = 1.10.0...

4.3CVSS5.9AI score0.0014EPSS
Exploits0References1
NVD
NVD
added 2025/06/27 2:15 p.m.6 views

CVE-2025-53261

Cross-Site Request Forgery CSRF vulnerability in macbookandrew WP YouTube Live wp-youtube-live allows Cross Site Request Forgery.This issue affects WP YouTube Live: from n/a through = 1.10.0...

4.3CVSS0.0014EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/27 1:21 p.m.14 views

CVE-2025-53261 WordPress WP YouTube Live plugin <= 1.10.0 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in macbookandrew WP YouTube Live wp-youtube-live allows Cross Site Request Forgery.This issue affects WP YouTube Live: from n/a through = 1.10.0...

4.3CVSS0.0014EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/06/27 12:0 a.m.8 views

PT-2025-27168 · WordPress · Wp Youtube Live

Name of the Vulnerable Software and Affected Versions: WP YouTube Live versions 1.10.0 and earlier Description: A Cross-Site Request Forgery CSRF issue affects the software, allowing unauthorized requests. Recommendations: For WP YouTube Live versions 1.10.0 and earlier, update to a version that...

4.3CVSS6.9AI score0.0014EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 1:12 a.m.7 views

CVE-2022-1187

The WordPress WP YouTube Live Plugin is vulnerable to Reflected Cross-Site Scripting via POST data found in the /inc/admin.php file which allows unauthenticated attackers to inject arbitrary web scripts in versions up to, and including, 1.7.21...

6.1CVSS6.4AI score0.01289EPSS
Exploits0References1
OSV
OSV
added 2022/05/16 3:15 p.m.11 views

CVE-2022-1334

The WP YouTube Live WordPress plugin before 1.8.3 does not validate, sanitise and escape various of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed...

4.8CVSS6AI score0.00654EPSS
Exploits1References1
CVE
CVE
added 2022/05/16 2:30 p.m.44 views

CVE-2022-1334

The CVE-2022-1334 entry concerns the WordPress WP YouTube Live plugin (versions before 1.8.3). The vulnerability stems from insufficient validation, sanitization, and escaping of multiple settings, enabling Cross-Site Scripting (XSS) by high-privilege users (e.g., admins), even when unfiltered_ht...

4.8CVSS4.8AI score0.00654EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/04/19 8:26 p.m.6 views

CVE-2022-1187 WP YouTube Live <= 1.7.21 - Reflected Cross-Site Scripting

The WordPress WP YouTube Live Plugin is vulnerable to Reflected Cross-Site Scripting via POST data found in the /inc/admin.php file which allows unauthenticated attackers to inject arbitrary web scripts in versions up to, and including, 1.7.21...

6.1CVSS6.5AI score0.01289EPSS
Exploits0References3
CVE
CVE
added 2022/04/19 8:26 p.m.61 views

CVE-2022-1187

CVE-2022-1187 affects the WordPress WP YouTube Live Plugin. The vulnerability is a reflected cross-site scripting (XSS) via POST data in the file ~/inc/admin.php, allowing unauthenticated attackers to inject scripts. Affected versions are up to and including 1.7.21 . Public sources in the connect...

6.1CVSS6.1AI score0.01289EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder