WordPress Plugin Vulnerabilities

Embed Articles <= 7.0.3 - CSRF & Stored XSS

Description

This plugin has since been discontinued.

Affects Plugins

Plugin icon
embed-articles
No known fix

References

URL
https://packetstormsecurity.com/files/#131797/

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Submitter
ethicalhack3r
Submitter twitter
ethicalhack3r
Verified
No
WPVDB ID
9cdcf613-a041-4320-bf8d-c88f443e8e96

Timeline

Publicly Published
2015-05-07 (about 11 years ago)
Added
2015-05-11 (about 11 years ago)
Last Updated
2019-10-21 (about 6 years ago)

Other

Published
Title
Published
2025-04-09
Title
Simple Post Meta Manager <= 1.0.9 - Reflected Cross-Site Scripting
Published
2026-04-16
Title
Royal Addons for Elementor < 1.7.1057 - Contributor+ Stored XSS via Instagram Feed Widget
Published
2024-06-03
Title
Newsletter, SMTP, Email marketing and Subscribe forms by Sendinblue < 3.1.78 - Reflected Cross-Site Scripting
Published
2025-07-22
Title
LearnPress Export Import < 4.1.0 - Reflected Cross-Site Scripting
Published
2016-07-13
Title
Master Slider < 2.8.0 - Reflected Cross-Site Scripting (XSS)