Medium severity6.1NVD Advisory· Published Jul 6, 2021· Updated Jun 17, 2026
CVE-2021-24387
CVE-2021-24387
Description
The WP Pro Real Estate 7 WordPress theme before 3.1.1 did not properly sanitise the ct_community parameter in its search listing page before outputting it back in it, leading to a reflected Cross-Site Scripting which can be triggered in both unauthenticated or authenticated user context
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <= 3.1.0
- Range: 3.1.1
Patches
Vulnerability mechanics
References
2- wpscan.com/vulnerability/27264f30-71d5-4d2b-8f36-4009a2be6745nvdExploitThird Party Advisory
- contempothemes.com/wp-real-estate-7/changelog/nvdRelease NotesVendor Advisory
News mentions
0No linked articles in our index yet.