Vulnerabilities > Wpdevart > Youtube Embed Playlist AND Popup > 1.2.9
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-06 | CVE-2023-24002 | Cross-site Scripting vulnerability in Wpdevart Youtube Embed, Playlist and Popup Auth. | 4.8 |
| 2021-08-02 | CVE-2021-24464 | Cross-site Scripting vulnerability in Wpdevart Youtube Embed, Playlist and Popup The YouTube Embed, Playlist and Popup by WpDevArt WordPress plugin before 2.3.9 did not escape, validate or sanitise some of its shortcode options, available to users with a role as low as Contributor, leading to an authenticated Stored Cross-Site Scripting issue. | 3.5 |