VYPR
Medium severity6.1NVD Advisory· Published Apr 5, 2021· Updated Jun 17, 2026

CVE-2021-24173

CVE-2021-24173

Description

The VM Backups WordPress plugin through 1.0 does not have CSRF checks, allowing attackers to make a logged in user unwanted actions, such as update the plugin's options, leading to a Stored Cross-Site Scripting issue.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.