CVE-2024-10057 | RSS Feed Widget Plugin up to 2.9.9 on WordPress Shortcode rfw-youtube-videos cross site scripting

CVE-2024-10057 | RSS Feed Widget Plugin up to 2.9.9 on WordPress Shortcode rfw-youtube-videos cross site scripting

A vulnerability was found in RSS Feed Widget Plugin up to 2.9.9 on WordPress and classified as problematic. This issue affects the function rfw-youtube-videos of the component Shortcode Handler. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2024-10057. The attack may be initiated remotely. There is no exploit available.