Youtube Embed Project Youtube Embed — known CVE vulnerabilities
Every CVE whose affected-product data names Youtube Embed Project Youtube Embed, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2021-24471 — CVSS 5.4 (medium): The YouTube Embed WordPress plugin before 5.2.2 does not validate, escape or sanitise some of its shortcode attributes, leading to Stored…
CVE-2015-6535 — CVSS 3.5 (low): Cross-site scripting (XSS) vulnerability in includes/options-profiles.php in the YouTube Embed plugin before 3.3.3 for WordPress allows…