Authenticated Cross-Site Scripting (XSS) in YouTube URL Embeds in WordPress before 4.7.3

Authenticated Cross-Site Scripting (XSS) in YouTube URL Embeds in WordPress before 4.7.3

CVE-2017-6817 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

In WordPress before 4.7.3 (wp-includes/embed.php), there is authenticated Cross-Site Scripting (XSS) in YouTube URL Embeds.

Learn more about our Wordpress Pen Testing.