CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

274 matches found

Patchstack•added 3 days ago•1 views

WordPress EmbedPress plugin <= 4.5.2 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by Mukhlis Amien in WordPress Plugin EmbedPress versions = 4.5.2...

5.8AI score

Exploits0Affected Software1

Patchstack•added 2026/02/02 8:30 p.m.•2 views

WordPress EmbedPress plugin <= 3.9.10 - Authenticated(Contributor+) Stored Cross-Site Scripting via PDF Widget URL vulnerability

AuthenticatedContributor+ Stored Cross-Site Scripting via PDF Widget URL vulnerability discovered by RandomRoot in WordPress Plugin EmbedPress versions = 3.9.10...

6.4CVSS5.2AI score0.00297EPSS

Exploits0References1Affected Software1

Patchstack•added 2026/02/02 2:29 p.m.•4 views

WordPress EmbedPress plugin <= 3.9.12 - Authenticated (Contributor+) Stored Cross-site Scripting via 'embedpress_doc_custom_color' vulnerability

Authenticated Contributor+ Stored Cross-site Scripting via 'embedpressdoccustomcolor' vulnerability discovered by WordFence in WordPress Plugin EmbedPress versions = 3.9.12...

5.4CVSS5.3AI score0.00114EPSS

Exploits0References1Affected Software1

Patchstack•added 2026/02/02 12:54 p.m.•3 views

WordPress EmbedPress plugin <= 3.9.14 - Authenticated (Contributor+) Stored Cross-Site Scripting via Youtube Block vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Youtube Block vulnerability discovered by João Pedro Soares de Alcântara - Kinorth in WordPress Plugin EmbedPress versions = 3.9.14...

6.4CVSS5.3AI score0.00114EPSS

Exploits0References1Affected Software1

RedhatCVE•added 2026/01/07 9:14 a.m.•4 views

CVE-2024-2128

The EmbedPress – Embed PDF, Google Docs, Vimeo, Wistia, Embed YouTube Videos, Audios, Maps & Embed Any Documents in Gutenberg & Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's embed widget in all versions up to, and including, 3.9.10 due to insufficien...

6.4CVSS5.8AI score0.00104EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:13 a.m.•6 views

CVE-2024-2468

The EmbedPress – Embed PDF, Google Docs, Vimeo, Wistia, Embed YouTube Videos, Audios, Maps & Embed Any Documents in Gutenberg & Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the EmbedPress widget 'embedpressprotwitchtheme ' attribute in all versions up to, and...

6.4CVSS5.8AI score0.00106EPSS

Exploits0References1