3 matches found
CVE-2023-5750
The EmbedPress WordPress plugin before 3.9.2 does not sanitise and escape a parameter before outputting it back in the page containing a specific content, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2023-5750
The EmbedPress WordPress plugin before 3.9.2 does not sanitise and escape a parameter before outputting it back in the page containing a specific content, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2023-5750
The CVE-2023-5750 entry affects the WordPress plugin EmbedPress prior to version 3.9.2, where a parameter is not properly sanitized/escaped before being echoed on a page, enabling a Reflected XSS. Impact is described as affecting high-privilege users such as admins. Technical details across conne...