Medium severity6.1NVD Advisory· Published Mar 18, 2021· Updated Jun 17, 2026
CVE-2021-24124
CVE-2021-24124
Description
Unvalidated input and lack of output encoding in the WP Shieldon WordPress plugin, version 1.6.3 and below, leads to Unauthenticated Reflected Cross-Site Scripting (XSS) when the CAPTCHA page is shown could lead to privileged escalation.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<=1.6.3+ 1 more
- (no CPE)range: <=1.6.3
- (no CPE)range: <=1.6.3
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/8d0eb0b4-0cc0-44e5-b720-90b01df3a6eenvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.