My Youtube Channel Project

My Youtube Channel

3 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2022-4756

Exploit
  • EPSS 0.18%
  • Veröffentlicht 06.02.2023 20:15:12
  • Zuletzt bearbeitet 25.03.2025 21:15:39

The My YouTube Channel WordPress plugin before 3.23.0 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Script...

5.5

CVE-2023-0446

  • EPSS 0.24%
  • Veröffentlicht 23.01.2023 17:15:10
  • Zuletzt bearbeitet 21.11.2024 07:37:11

The My YouTube Channel plugin for WordPress is vulnerable to Stored Cross-Site Scripting via its settings parameters in versions up to, and including, 3.0.12.1 due to insufficient input sanitization and output escaping. This makes it possible for aut...

4.3

CVE-2023-0447

  • EPSS 0.15%
  • Veröffentlicht 23.01.2023 17:15:10
  • Zuletzt bearbeitet 21.11.2024 07:37:11

The My YouTube Channel plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the clear_all_cache function in versions up to, and including, 3.0.12.1. This makes it possible for authenticated attackers, with s...