Vulnerabilities > Davidartiss > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-10-04 CVE-2024-8804 Cross-site Scripting vulnerability in Davidartiss Code Embed
The Code Embed plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's script embed functionality in all versions up to, and including, 2.4 due to insufficient restrictions on who can utilize the functionality.
network
low complexity
davidartiss CWE-79
5.4