CVE-2024-2468 | EmbedPress Plugin up to 3.9.12 on WordPress Widget Attribute cross site scripting

Posted by Angelo Barbosa | Mar 22, 2024 | CVE

A vulnerability classified as problematic has been found in EmbedPress Plugin up to 3.9.12 on WordPress. Affected is an unknown function of the component Widget Attribute Handler. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2024-2468. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-2468 | EmbedPress Plugin up to 3.9.12 on WordPress Widget Attribute cross site scripting

Related Posts

CVE-2024-34392 | libxmljs up to 1.0.11 namespaces type confusion (ID 646)

CVE-2024-0933 | Niushop B2B2C V5 appmodelUpload.php unrestricted upload

CVE-2023-6703 | Google Chrome prior 120.0.6099.109 Blink use after free

CVE-2024-23189 | Open-Xchange OX App Suite up to 7.10.6-rev40/8.21 Embedded Content cross site scripting (adv-2024-0001)