CVE-2023-6986
The CVE-2023-6986 vulnerability affects the WordPress plugin EmbedPress (Embed PDF, YouTube, Google Docs, Vimeo, Wistia, etc.). It enables Stored Cross‑Site Scripting via the embed_oembed_html shortcode in all versions before 3.9.5 due to insufficient input sanitization and output escaping of use...