Wpdeveloper · Wpdeveloper Embedpress · CVE-2024-50461
Name of the Vulnerable Software and Affected Versions:
WPDeveloper EmbedPress versions 4.0.14 and earlier
Description:
The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting (XSS). This allows for Stored XSS attacks.
Recommendations:
For WPDeveloper EmbedPress versions 4.0.14 and earlier, update to a version later than 4.0.14 to resolve the issue.
At the moment, there is no information about additional mitigation measures.