Security Advisory

CVE-2021-24211

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-04-05 18:27:47
Last updated 2024-08-03 19:21:18
Assigner WPScan
State PUBLISHED

Description

The WordPress Related Posts plugin through 3.6.4 contains an authenticated (admin+) stored XSS vulnerability in the title field on the settings page. By exploiting that an attacker will be able to execute JavaScript code in the users browser.