Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4
CVE-2021-24471
- EPSS 0.16%
- Published 16.08.2021 11:15:08
- Last modified 21.11.2024 05:53:08
The YouTube Embed WordPress plugin before 5.2.2 does not validate, escape or sanitise some of its shortcode attributes, leading to Stored XSS issues by 1. using w, h, controls, cc_lang, color, language, start, stop, or style parameter of youtube shor...
3.5
CVE-2015-6535
- EPSS 0.5%
- Published 31.08.2015 18:59:09
- Last modified 12.04.2025 10:46:40
Cross-site scripting (XSS) vulnerability in includes/options-profiles.php in the YouTube Embed plugin before 3.3.3 for WordPress allows remote administrators to inject arbitrary web script or HTML via the Profile name field (youtube_embed_name parame...
1