Medium severity4.3NVD Advisory· Published Apr 8, 2026· Updated Apr 24, 2026
CVE-2026-39485
CVE-2026-39485
Description
Missing Authorization vulnerability in embedplus Youtube Embed Plus youtube-embed-plus allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Youtube Embed Plus: from n/a through <= 14.2.4.
Affected products
1- Range: <= 14.2.4
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.