Vulnerabilities and security researches forvideo-list-manager video-list-manager

Jun 24, 2025

CVE, Research URL: CVE-2025-52821
Home page URL: Security reports for Video List Manager
Application: Video List Manager
Date: Jun 20, 2025
Research Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in thanhtungtnt Video List Manager allows SQL Injection. This issue affects Video List Manager: from n/a through 1.7.
Affected versions: Min -, max -.
Status: vulnerable

CVE, Research URL: CVE-2025-49986
Home page URL: Security reports for Video List Manager
Application: Video List Manager
Date: Jun 20, 2025
Research Description: Missing Authorization vulnerability in thanhtungtnt Video List Manager allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Video List Manager: from n/a through 1.7.
Affected versions: Min -, max -.
Status: vulnerable

Jun 07, 2024

CVE, Research URL: CVE-2023-1408
Home page URL: Security reports for Video List Manager
Application: Video List Manager
Date: May 08, 2023
Research Description: The Video List Manager WordPress plugin through 1.7 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin
Affected versions: Min -, max -.
Status: vulnerable