Stored XSS Vulnerability in Themes4WP YouTube External Subtitles
CVE-2024-50470
6.5MEDIUM
Key Information:
- Vendor
WordPress
- Vendor
- CVE Published:
- 28 October 2024
What is CVE-2024-50470?
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Themes4WP Themes4WP YouTube External Subtitles themes4wp-youtube-external-subtitles allows DOM-Based XSS.This issue affects Themes4WP YouTube External Subtitles: from n/a through <= 1.0.
Affected Version(s)
Themes4WP YouTube External Subtitles 0 <= 1.0