Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

CVE-2024-5571

🗓️ 05 Jun 2024 09:10:15Reported by [email protected]Type 
nvd
 nvd🔗 web.nvd.nist.gov👁 7 Views

The EmbedPress plugin for WordPress (up to version 4.0.1) is vulnerable to Stored Cross-Site Scripting via 'url' attribute in the EmbedPress PDF widge

Show more
Related
Detection
Refs
ReporterTitlePublishedViews
Family
WPVulnDB		EmbedPress – Embed PDF, Google Docs, Vimeo, Wistia, Embed YouTube Videos, Audios, Maps & Embed Any Documents in Gutenberg & Elementor < 4.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via EmbedPress PDF Widget
4 Jun 202400:00
wpvulndb
Patchstack		WordPress EmbedPress Plugin <= 4.0.1 is vulnerable to Cross Site Scripting (XSS)
5 Jun 202400:00
patchstack
Vulnrichment		CVE-2024-5571 EmbedPress – Embed PDF, Google Docs, Vimeo, Wistia, Embed YouTube Videos, Audios, Maps & Embed Any Documents in Gutenberg & Elementor <= 4.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via EmbedPress PDF Widget
5 Jun 202408:33
vulnrichment
CVE		CVE-2024-5571
5 Jun 202409:15
cve
Cvelist		CVE-2024-5571 EmbedPress – Embed PDF, Google Docs, Vimeo, Wistia, Embed YouTube Videos, Audios, Maps & Embed Any Documents in Gutenberg & Elementor <= 4.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via EmbedPress PDF Widget
5 Jun 202408:33
cvelist
Wordfence Blog		Wordfence Intelligence Weekly WordPress Vulnerability Report (June 3, 2024 to June 9, 2024)
13 Jun 202415:35
wordfence
Nvd
Node
wpdeveloperembedpressRange<4.0.2wordpress

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
05 Jun 2024 09:15Current
5.7Medium risk
Vulners AI Score5.7
CVSS35.4
EPSS0.001
CWE-79
embedpresswordpresscross-site scriptingstored xsspdf widgetvulnerabilityinput sanitizationoutput escaping
7
.json
Report