Security Advisory

CVE-2021-24326

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-05-17 16:48:54

Last updated 2024-08-03 19:28:23

Assigner WPScan

State PUBLISHED

Description

The tab parameter of the settings page of the All 404 Redirect to Homepage WordPress plugin before 1.21 was vulnerable to an authenticated reflected Cross-Site Scripting (XSS) issue as user input was not properly sanitised before being output in an attribute.

← Browse all CVEs View on cve.org ↗