Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
External Media ProjectExternal Media

2 matches found

CVE
CVEadded 2022/12/19 1:41 p.m.49 views

CVE-2022-3832

CVE-2022-3832 affects the External Media WordPress plugin prior to 1.0.36. The root cause is improper sanitisation/escaping of some plugin settings, enabling stored XSS by high-privilege users (e.g., admins) even when unfiltered_html is disallowed (such as in multisite setups). Documents consiste...

4.8CVSS4.7AI score0.0047EPSS
CVE
CVEadded 2021/06/01 11:33 a.m.48 views

CVE-2021-24311

The CVE-2021-24311 entry concerns the WordPress External Media plugin prior to version 1.0.34. The vulnerability stems from the wp_ajax_upload-remote-file AJAX action, allowing authenticated users to upload arbitrary files. This could enable execution or storage of attacker-supplied content, depe...

8.8CVSS8.7AI score0.01775EPSS
Web