Security Advisory

CVE-2023-3371

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-06-27 01:55:28

Last updated 2026-04-08 17:19:46

Assigner Wordfence

State PUBLISHED

Description

The EmbedPress plugin for WordPress is vulnerable to Sensitive Information Exposure due to hardcoded encryption key on the lock_content_form_handler and display_password_form function in versions up to, and including, 3.7.3. This makes it possible for unauthenticated attackers to decrypt and view the password protected content.

← Browse all CVEs View on cve.org ↗