CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-1334

The WP YouTube Live WordPress plugin before 1.8.3 does not validate, sanitise and escape various of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 50.3%

CVSS Severity

CVSS v3 Score 4.8

CVSS v2 Score 3.5

References

https://wpscan.com/vulnerability/af3b32c9-f386-4bb6-a362-86a27f49a739
https://wpscan.com/vulnerability/af3b32c9-f386-4bb6-a362-86a27f49a739

Products affected by CVE-2022-1334

Wp Youtube Live Project » Wp Youtube Live » Version: N/A

cpe:2.3:a:wp_youtube_live_project:wp_youtube_live:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-1334

Products

Pricing

Contact Us