Medium severity5.4NVD Advisory· Published Apr 5, 2021· Updated Jun 17, 2026
CVE-2021-24176
CVE-2021-24176
Description
The JH 404 Logger WordPress plugin through 1.1 doesn't sanitise the referer and path of 404 pages, when they are output in the dashboard, which leads to executing arbitrary JavaScript code in the WordPress dashboard.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/JH 404 Loggerdescription
- Range: <=1.1
Patches
Vulnerability mechanics
References
2- ganofins.com/blog/my-first-cve-2021-24176/nvdExploitThird Party Advisory
- wpscan.com/vulnerability/705bcd6e-6817-4f89-be37-901a767b0585nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.