CVE-2024-11203 | wpdevteam EmbedPress Plugin up to 4.1.3 on WordPress provider_name cross site scripting

Posted by Angelo Barbosa | Nov 28, 2024 | CVE

A vulnerability classified as problematic has been found in wpdevteam EmbedPress Plugin up to 4.1.3 on WordPress. Affected is an unknown function. The manipulation of the argument provider_name leads to cross site scripting.

This vulnerability is traded as CVE-2024-11203. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-11203 | wpdevteam EmbedPress Plugin up to 4.1.3 on WordPress provider_name cross site scripting

Related Posts

CVE-2024-33181 | Tenda AC18 15.03.3.10_EN addWifiMacFilter deviceMac stack-based overflow

CVE-2024-2935 | SourceCodester Todo List in Kanban Board 1.0 Add ToDo cross site scripting

CVE-2023-32095 | Milan Dinić Rename Media Files Plugin up to 1.0.1 on WordPress code injection

CVE-2024-9213 | Persian WooCommerce SMS Plugin up to 7.0.2 on WordPress cross site scripting