cleantalk
Vulnerabilities and Security Researches

Document Embedder, CVE-2021-24775

CVE, Research URL

CVE-2021-24775

Home page URL

Security reports for Document Embedder

Application

Document Embedder

Published on
Feb 01, 2022
Research Description
The Document Embedder WordPress plugin before 1.7.5 contains a REST endpoint, which could allow unauthenticated users to enumerate the title of arbitrary private and draft posts.
Affected versions
max 1.7.6.
Status
vulnerable
Previous vulnerability researches
Document Embedder (CVE-2025-12384) , Nov 11, 2025
Document Embedder (CVE-2021-24868) , Jun 07, 2024
Document Embedder (CVE-2021-24775) , Jun 07, 2024
New vulnerability
JB News Ticker (CVE-2025-11804) , Nov 11, 2025
My auctions allegro (CVE-2025-10048) , Nov 11, 2025
Sertifier Certificates & Open Badges – Tutor LMS (CVE-2025-53214) , Nov 11, 2025
Toast Mobile Menu – PageSpeed Insights Friendly (CVE-2025-53238) , Nov 11, 2025
Stripe Payment forms for WordPress Plugin – WP Full Pay (CVE-2025-9322) , Nov 11, 2025