Medium severity5.4NVD Advisory· Published Apr 22, 2021· Updated Jun 17, 2026
CVE-2021-24232
CVE-2021-24232
Description
The Advanced Booking Calendar WordPress plugin before 1.6.8 does not sanitise the license error message when output in the settings page, leading to an authenticated reflected Cross-Site Scripting issue
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/Advanced Booking Calendardescription
- Range: <1.6.8
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/f06629b5-8b15-48eb-a7a7-78b693e06b71nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.