Filter
AND
AND

Versions

3.9.12
3
3.8.2
2
3.9.10
2
3.9.14
2
3.9.16
1

Wpdeveloper EmbedpressXSS

medium
6.4
First published (updated )
CVE-2024-2468

Wpdeveloper EmbedpressXSS

medium
6.4
First published (updated )
CVE-2024-1802

Wpdeveloper EmbedpressXSS

medium
6.4
First published (updated )
CVE-2024-2128

Wpdeveloper EmbedpressEmbedPress – Embed PDF, Google Docs, Vimeo, Wistia, Embed YouTube Videos, Audios, Maps & Embed Any Documents in Gutenberg & Elementor <= 3.9.12 - Insufficient Authorization Checks to Block Usual

medium
4.3
First published (updated )
CVE-2024-1803

Wpdeveloper EmbedpressXSS

medium
6.4
EPSS
0.04%
First published (updated )
CVE-2024-3245

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Wpdeveloper EmbedpressXSS

medium
6.4
EPSS
0.04%
First published (updated )
CVE-2024-3244

Wpdeveloper EmbedpressEmbedPress Embed PDF, Google Docs, Vimeo, Wistia, Embed YouTube Videos, Audios, Maps & Embed Any Documents in Gutenberg & Elementor <= 3.9.16 - Authenticated (Contributor+) Stored Cross-Site Scripting via id Parameter

medium
6.4
EPSS
0.04%
First published (updated )
CVE-2024-4316

Wpdeveloper EmbedpressXSS

medium
5.4
EPSS
0.04%
First published (updated )
CVE-2024-2688

Wpdeveloper EmbedpressXSS

medium
6.4
First published (updated )
CVE-2024-1425

Wpdeveloper EmbedpressXSS

medium
6.4
First published (updated )
CVE-2024-1349

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Wpdeveloper EmbedpressEmbedPress – Embed PDF, Google Docs, Vimeo, Wistia, Embed YouTube Videos, Audios, Maps & Embed Any Documents in Gutenberg & Elementor <= 4.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via EmbedPress PDF Widget

medium
6.4
EPSS
0.05%
First published (updated )
CVE-2024-5571

Wpdeveloper EmbedpressThe EmbedPress plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capa…

medium
5.4
First published (updated )
CVE-2023-4282

Wpdeveloper EmbedpressXSS

medium
6.4
First published (updated )
CVE-2023-4283

Wpdeveloper EmbedpressWordPress EmbedPress plugin <= 4.0.14 - Cross Site Scripting (XSS) vulnerability

medium
6.5
First published (updated )
CVE-2024-50461

Wpdeveloper EmbedpressWordPress EmbedPress plugin <= 3.9.11 - Broken Access Control vulnerability

medium
5.3
First published (updated )
CVE-2024-31274

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Wpdeveloper EmbedpressWordPress EmbedPress plugin <= 4.0.8 - Cross Site Scripting (XSS) vulnerability

medium
6.5
First published (updated )
CVE-2024-43936

Wpdeveloper EmbedpressXSS

medium
6.4
EPSS
0.05%
First published (updated )
CVE-2023-6986

Wpdeveloper EmbedpressEmbedPress < 3.9.2 - Reflected XSS

medium
6.1
EPSS
0.05%
First published (updated )
CVE-2023-5749

Wpdeveloper EmbedpressEmbedPress < 3.9.2 - Reflected XSS

medium
6.1
EPSS
0.05%
First published (updated )
CVE-2023-5750

Wpdeveloper EmbedpressEmbedPress <= 3.9.10 - Authenticated(Contributor+) Stored Cross-Site Scripting via PDF Widget URL

medium
6.4
First published (updated )
CVE-2024-1565

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203