Vulnerabilities > Youtube Embed Project

DATE	CVE	VULNERABILITY TITLE	RISK
2021-08-16	CVE-2021-24471	Cross-site Scripting vulnerability in Youtube Embed Project Youtube Embed 3.3.2 The YouTube Embed WordPress plugin before 5.2.2 does not validate, escape or sanitise some of its shortcode attributes, leading to Stored XSS issues by 1. network high complexity youtube-embed-project CWE-79	2.1
2015-08-31	CVE-2015-6535	Cross-site Scripting vulnerability in Youtube Embed Project Youtube Embed 3.3.2 Cross-site scripting (XSS) vulnerability in includes/options-profiles.php in the YouTube Embed plugin before 3.3.3 for WordPress allows remote administrators to inject arbitrary web script or HTML via the Profile name field (youtube_embed_name parameter). network youtube-embed-project CWE-79	3.5

Vulnerabilities > Youtube Embed Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Youtube Embed Project"}]}