Medium severity5.4NVD Advisory· Published Jun 1, 2021· Updated Jun 17, 2026
CVE-2021-24309
CVE-2021-24309
Description
The "Schedule Name" input in the Weekly Schedule WordPress plugin before 3.4.3 general options did not properly sanitize input, allowing a user to inject javascript code using the HTML tags and cause a stored XSS issue
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/Weekly Scheduledescription
- Range: <3.4.3
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/ba1d01dc-16e4-464f-94be-ed311ff6ccf9nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.