GCVE - cpe:2.3:a:emarket-design:youtube_showcase:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:emarket-design:youtube_showcase:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Emarket Design (`8fb61feb-3a38-520b-9ec4-c08f2531594e`)
Product	Youtube Showcase (`58229aef-3a10-55b4-ae55-4007a5c60ae0`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-58915`	vulnerable	2026-06-03 15:06:23.133601	WordPress Request a Quote plugin <= 2.5.0 - Cross Site Scripting (XSS) vulnerability MEDIUM (6.5) Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in emarket-design Request a Quote request-a-quote allows Stored XSS.This issue affects Request a Quote: from n/a through <= 2.5.0. Published: 2025-09-23T02:08:41.364Z Updated: 2026-04-28T16:13:49.319Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/request-a-quote/vulnerability/wordpress-request-a-quote-plugin-2-5-0-cross-site-scripting-xss-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-54731`	vulnerable	2026-06-03 15:04:56.625618	WordPress YouTube Showcase Plugin <= 3.5.1 - PHP Object Injection Vulnerability HIGH (8.1) Improper Control of Generation of Code ('Code Injection') vulnerability in emarket-design YouTube Showcase youtube-showcase allows Object Injection.This issue affects YouTube Showcase: from n/a through <= 3.5.1. Published: 2025-08-28T12:37:37.895Z Updated: 2026-04-28T16:13:36.755Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/youtube-showcase/vulnerability/wordpress-youtube-showcase-plugin-3-5-1-php-object-injection-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-15636`	vulnerable	2026-06-03 14:58:57.509007	WordPress YouTube Showcase plugin <= 3.5.1 - Cross Site Scripting (XSS) vulnerability MEDIUM (6.5) Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in emarket-design YouTube Showcase youtube-showcase allows Stored XSS.This issue affects YouTube Showcase: from n/a through <= 3.5.1. Published: 2026-04-15T15:55:51.930Z Updated: 2026-04-28T16:10:57.676Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/youtube-showcase/vulnerability/wordpress-youtube-showcase-plugin-3-5-1-cross-site-scripting-xss-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.