EmbedPress
WPDeveloper
Developer
4.4.6
Latest version
100,000
Installations
3 days ago
Last updated
Vulnerability history
0 present
24 fixed
9 Mitigation rules
- Authenticated (Contributor+) Stored Cross-Site Scripting via 'provider_name' vulnerability<= 4.1.3Nov 27, 2024
- Cross Site Scripting (XSS) vulnerability<= 4.0.14Oct 24, 2024
- Cross Site Scripting (XSS) vulnerability<= 4.0.8Aug 26, 2024
- Local File Inclusion vulnerability<= 4.0.9Aug 16, 2024
- Broken Access Control vulnerability<= 4.0.4Jul 11, 2024
- Cross Site Scripting (XSS) vulnerability<= 4.0.2Jun 27, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting via EmbedPress PDF Widget vulnerability<= 4.0.1Jun 5, 2024
- Insufficient Authorization Checks vulnerability<= 3.9.12May 24, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting via id Parameter vulnerability<= 3.9.16May 10, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode vulnerability<= 3.9.14Apr 8, 2024
- Broken Access Control vulnerability<= 3.9.8Apr 5, 2024
- Broken Access Control vulnerability<= 3.9.11Apr 5, 2024
- Authenticated(Contributor+) Stored Cross-Site Scripting via Attribute vulnerability<= 3.9.12Mar 25, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting via Wistia Block vulnerability<= 3.9.10Mar 7, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting via EmbedPress PDF Widget vulnerability<= 3.9.10Mar 7, 2024
- Authenticated(Contributor+) Stored Cross-Site Scripting via Google Calendar Widget Link vulnerability<= 3.9.8Feb 15, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode vulnerability<= 3.9.8Feb 15, 2024
- Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode vulnerability< 3.9.5Jan 3, 2024
- Broken Access Control vulnerability<= 3.8.3Dec 26, 2023
- Reflected Cross-Site Scripting via the hash parameter vulnerability<= 3.9.1Nov 17, 2023
- Contributor+ Stored Cross-Site Scripting via Shortcode vulnerability<= 3.8.2Aug 10, 2023
- Subscriber+ Plugin Settings Delete vulnerability<= 3.8.2Aug 10, 2023
- Reflected Cross Site Scripting (XSS) vulnerability<= 2.0.2Jul 19, 2023
- Sensitive Information Exposure vulnerability<= 3.7.3Jun 26, 2023