VYPR

Lazy Load For Videos

by WordPress

Source repositories

CVEs (2)

  • CVE-2025-7732MedAug 27, 2025
    risk 0.35cvss 6.4epss 0.00

    The Lazy Load for Videos plugin for WordPress is vulnerable to Stored Cross-Site Scripting via its lazy‑loading handlers in all versions up to, and including, 2.18.7 due to insufficient input sanitization and output escaping. The plugin’s JavaScript registration handlers…

  • CVE-2023-45656MedOct 16, 2023
    risk 0.35cvss 5.4epss 0.00

    Cross-Site Request Forgery (CSRF) vulnerability in Kevin Weber Lazy Load for Videos plugin <= 2.18.2 versions.