Medium severity5.4NVD Advisory· Published May 17, 2021· Updated Jun 17, 2026
CVE-2021-24326
CVE-2021-24326
Description
The tab parameter of the settings page of the All 404 Redirect to Homepage WordPress plugin before 1.21 was vulnerable to an authenticated reflected Cross-Site Scripting (XSS) issue as user input was not properly sanitised before being output in an attribute.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<1.21+ 1 more
- (no CPE)range: <1.21
- (no CPE)range: <1.21
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/63d6ca03-e0df-40db-9839-531c13619094nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.