Log out
Get PRO

Latest

Input validation vulnerability in EmbedPress – Embed PDF, 3D Flipbook, Social Feeds, Google Docs, Vimeo, Wistia, YouTube Videos, Audios, Google Maps in Gutenberg Block & Elementor 4.0.9

  • Severity: critical
  • Status: Fixed
  • Publication: August 16, 2024

The EmbedPress plugin for WordPress, which allows users to embed various types of media in their website, is at risk of being exploited by hackers. This vulnerability, known as Local File Inclusion, allows attackers to access and run files on the server without proper authentication. This can lead to unauthorized access, the theft of sensitive information, or the execution of harmful code. This risk is present in all versions of the plugin, up to and including version 4.0.9.

Detected in:

EmbedPress – Embed PDF, 3D Flipbook, Social Feeds, Google Docs, Vimeo, Wistia, YouTube Videos, Audios, Google Maps in Gutenberg Block & Elementor fixed vulnerable versions:
EmbedPress – Embed PDF, PDF 3D FlipBook, Instagram Social Feeds, Google Docs, Vimeo, Wistia, YouTube Videos, Maps & Upload PDF Documents fixed vulnerable versions:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.

Join our mailing list - 6 Tips & Tricks in your inbox over the next days!

Plugins

© Really Simple Plugins
CoC 70461155
Kalmarweg 14-5
9723 JG, Groningen (NL)

Wordpress Linkedin Github

Get Started

About

Popular articles