YouTube Embed <= 3.3.2 - Authenticated Stored Cross-Site Scripting (XSS)
Affects Plugin
|
References
CVE | 2015-6535 |
PACKETSTORM | 133340 |
URL | https://seclists.org/bugtraq/2015/Aug/146 |
URL | https://github.com/espreto/wpsploit/blob/master/modules/auxiliary/scanner/http/wp_youtube_embed_xss_scanner.rb |
Classification
Type | XSS |
OWASP Top 10 | A7: Cross-Site Scripting (XSS) |
CWE | CWE-79 |
Miscellaneous
Submitter | ethicalhack3r |
Submitter Website | https://dewhurstsecurity.com/ |
Submitter Twitter | ethicalhack3r |
Views | 5654 |
Verified | No |
WPVDB ID | 8163 |
Timeline
Publicly Published | 2015-08-26 (over 4 years ago) |
Added | 2015-08-26 (over 4 years ago) |
Last Updated | 2019-10-23 (about 2 months ago) |
Our Other Services
Online WordPress Vulnerability Scanner | WPScan WordPress Security Plugin |