Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned.

Description: The issue arises from improper encoding of user input, making online media asset rendering for *.youtube and *.vimeo files susceptible to cross-site scripting. Exploitation requires a valid backend user account or write access on the server system, such as SFTP.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.