VYPR
Vendor

Yotuwp

Products
3
CVEs
3
Across products
6
Status
Private

Products

3

Recent CVEs

3
  • CVE-2024-4258CriJun 15, 2024
    risk 0.64cvss 9.8epss 0.01

    The Video Gallery – YouTube Playlist, Channel Gallery by YotuWP plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.3.13 via the settings parameter. This makes it possible for unauthenticated attackers to include and execute…

  • CVE-2024-4551MedJun 15, 2024
    risk 0.42cvss 6.4epss 0.01

    The Video Gallery – YouTube Playlist, Channel Gallery by YotuWP plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.3.13 via the display function. This makes it possible for authenticated attackers, with contributor access and…

  • CVE-2023-25477Sep 1, 2023
    risk 0.00cvss epss 0.00

    Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Yotuwp Video Gallery plugin <= 1.3.12 versions.