Filtered by vendor Video Player For Youtube Project
Subscriptions
Total
1 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2021-24414 | 1 Video Player For Youtube Project | 1 Video Player For Youtube | 2024-11-21 | 5.4 Medium |
The Video Player for YouTube WordPress plugin before 1.4 does not sanitise or validate the parameters from its shortcode, allowing users with a role as low as contributor to set Cross-Site Scripting payload in them which will be triggered in the page/s with the embed malicious shortcode |
Page 1 of 1.