Sign in Subscribe

← All advisories

Medium severity6.4NVD Advisory· Published Nov 9, 2022· Updated Apr 28, 2026

CVE-2022-44590

CVE-2022-44590

Description

Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in James Lao's Simple Video Embedder plugin <= 2.2 on WordPress.

Affected products

1

Simple Video Embedder Project/Simple Video Embedder
cpe:2.3:a:simple_video_embedder_project:simple_video_embedder:*:*:*:*:*:wordpress:*:*
Range: <=2.2

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

2

patchstack.com/database/vulnerability/simple-video-embedder/wordpress-simple-video-embedder-plugin-2-2-auth-stored-cross-site-scripting-xss-vulnerabilitynvdThird Party Advisory
wordpress.org/plugins/simple-video-embedder/nvdProductThird Party Advisory

News mentions

0

No linked articles in our index yet.