CVE-2023-6737

The Enable Media Replace plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the SHORTPIXELDEBUG parameter in all versions up to, and including, 4.1.4 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

CVE-2023-6737 Enable Media Replace <= 4.1.4 - Reflected Cross-Site Scripting

The Enable Media Replace plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the SHORTPIXELDEBUG parameter in all versions up to, and including, 4.1.4 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...

PT-2024-15068 · WordPress · Enable Media Replace

Name of the Vulnerable Software and Affected Versions: Enable Media Replace plugin for WordPress versions up to, and including, 4.1.4 Description: The issue allows for Reflected Cross-Site Scripting due to insufficient input sanitization and output escaping via the SHORTPIXEL DEBUG parameter. Thi...

WordPress Plugin Enable Media Replace Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...