Vulnerabilities > Wpdeveloper > Embedpress > 4.0.2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-01 | CVE-2024-38707 | Missing Authorization vulnerability in Wpdeveloper Embedpress Missing Authorization vulnerability in WPDeveloper EmbedPress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects EmbedPress: from n/a through 4.0.4. | 8.8 |
| 2024-10-28 | CVE-2024-50461 | Cross-site Scripting vulnerability in Wpdeveloper Embedpress Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WPDeveloper EmbedPress allows Stored XSS.This issue affects EmbedPress: from n/a through 4.0.14. | 5.4 |
| 2024-08-29 | CVE-2024-43936 | Cross-site Scripting vulnerability in Wpdeveloper Embedpress Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WPDeveloper EmbedPress allows Stored XSS.This issue affects EmbedPress: from n/a through 4.0.8. | 5.4 |
| 2024-08-19 | CVE-2024-43328 | Path Traversal vulnerability in Wpdeveloper Embedpress Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in WPDeveloper EmbedPress allows PHP Local File Inclusion.This issue affects EmbedPress: from n/a through 4.0.9. | 9.8 |