Amauri Tarteaucitron.io — known CVE vulnerabilities
Every CVE whose affected-product data names Amauri Tarteaucitron.io, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
CVE-2025-4955 — CVSS 4.7 (medium): The tarteaucitron.io WordPress plugin before 1.9.5 uses query parameters from YouTube oEmbed URLs without sanitizing these parameters…