| CVE-2024-35770 | WordPress Vimeography plugin <= 2.4.1 - Cross Site Request Forgery (CSRF) vulnerability | Dave Kiss | Vimeography: Vimeo Video Gallery WordPress Plugin | Medium | 4.3 | 2024-06-21 13:10:24 | Deep Dive |
| CVE-2024-5522 | HTML5 Video Player < 2.5.27 - Unauthenticated SQLi | Unknown | HTML5 Video Player | - | - | 2024-06-20 06:00:04 | Deep Dive |
| CVE-2024-5475 | Responsive video embed < 0.5.1 - Contributor+ Stored XSS | Unknown | Responsive video embed | - | - | 2024-06-20 06:00:04 | Deep Dive |
| CVE-2024-5724 | Photo Video Gallery Master <= 1.5.3 - Authenticated (Contributor+) PHP Object Injection | webhuntinfotech | Photo Video Gallery Master | High | 8.8 | 2024-06-19 03:12:31 | Deep Dive |
| CVE-2024-4551 | Video Gallery – YouTube Playlist, Channel Gallery by YotuWP <= 1.3.13 - Authenticated (Contributor+) Arbitrary File Inclusion via Shortcode | yotuwp | Video Gallery – YouTube Playlist, Channel Gallery by YotuWP | Medium | 6.4 | 2024-06-15 08:42:18 | Deep Dive |
| CVE-2024-4258 | Video Gallery – YouTube Playlist, Channel Gallery by YotuWP <= 1.3.13 - Unauthenticated Local File Inclusion | yotuwp | Video Gallery – YouTube Playlist, Channel Gallery by YotuWP | Critical | 9.8 | 2024-06-15 08:42:16 | Deep Dive |
| CVE-2024-35717 | WordPress Media Slider plugin <= 1.3.9 - Broken Access Control vulnerability | A WP Life | Media Slider – Photo Sleder, Video Slider, Link Slider, Carousal Slideshow | Medium | 4.3 | 2024-06-10 08:00:32 | Deep Dive |
| CVE-2024-31248 | WordPress All-in-One Video Gallery plugin <= 3.5.2 - Broken Access Control vulnerability | Team Plugins360 | All-in-One Video Gallery | Medium | 4.3 | 2024-06-09 11:10:30 | Deep Dive |
| CVE-2024-35631 | WordPress FV Flowplayer Video Player plugin <= 7.5.45.7212 - Cross Site Scripting (XSS) vulnerability | Foliovision | FV Flowplayer Video Player | High | 7.1 | 2024-06-03 10:30:46 | Deep Dive |
| CVE-2024-3268 | YouTube Video Gallery by YouTube Showcase – Video Gallery Plugin for WordPress <= 3.3.6 - Missing Authorization to Arbitrary Post/Page Creation | emarket-design | Video Gallery – YouTube Gallery & Responsive Video Playlist | Medium | 5.3 | 2024-05-21 11:33:17 | Deep Dive |
| CVE-2023-42668 | Intel Server Board 安全漏洞 | - | onboard video driver software for Intel(R) Server Boards based on Intel(R) 62X Chipset | Medium | 6.7 | 2024-05-16 20:47:39 | Deep Dive |
| CVE-2024-27244 | Zoom Workplace VDI App for Windows - Insufficient Verification of Data Authenticity | Zoom Video Communications, Inc. | Zoom Workplace VDI App for Windows | Medium | 6.7 | 2024-05-15 20:46:38 | Deep Dive |
| CVE-2024-27243 | Zoom Apps - Buffer Overflow | Zoom Video Communications, Inc. | see references | Medium | 6.5 | 2024-05-15 20:37:45 | Deep Dive |
| CVE-2024-4670 | All-in-One Video Gallery <= 3.6.5 - Authenticated (Contributor+) Local File Inclusion via aiovg_search_form Shortcode | plugins360 | All-in-One Video Gallery | High | 8.8 | 2024-05-15 12:46:20 | Deep Dive |
| CVE-2024-34377 | WordPress Video Gallery – Api Gallery, YouTube and Vimeo, Link Gallery plugin <= 1.5.3 - Broken Access Control vulnerability | A WP Life | Video Gallery – Api Gallery, YouTube and Vimeo, Link Gallery | Medium | 4.3 | 2024-05-06 18:57:07 | Deep Dive |
| CVE-2024-4033 | All-in-One Video Gallery <= 3.6.4 - Authenticated (Contributor+) Arbitrary File Upload via featured image | plugins360 | All-in-One Video Gallery | High | 8.8 | 2024-05-02 16:52:47 | Deep Dive |
| CVE-2024-4324 | WP Video Lightbox <= 1.9.10 - Authenticated (Contributor+) Stored Cross-Site Scripting via width Parameter | wptipsntricks | WP Video Lightbox | Medium | 6.4 | 2024-05-02 16:52:45 | Deep Dive |
| CVE-2024-33584 | WordPress Video Conferencing with Zoom plugin <= 4.4.4 - Open Redirection vulnerability | Deepen Bajracharya | Video Conferencing with Zoom | Medium | 4.7 | 2024-04-29 07:39:57 | Deep Dive |
| CVE-2024-32078 | WordPress FV Player plugin <= 7.5.44.7212 - Unvalidated Redirects and Forwards vulnerability | Foliovision | FV Flowplayer Video Player | Medium | 4.1 | 2024-04-24 15:40:22 | Deep Dive |
| CVE-2024-32955 | WordPress FV Flowplayer Video Player plugin <= 7.5.43.7212 - Server Side Request Forgery (SSRF) vulnerability | Foliovision | FV Flowplayer Video Player | Medium | 4.9 | 2024-04-24 07:05:43 | Deep Dive |