High severity7.2NVD Advisory· Published Sep 20, 2021· Updated Jun 17, 2026
CVE-2021-24396
CVE-2021-24396
Description
A pageid GET parameter of the GSEOR – WordPress SEO Plugin WordPress plugin through 1.3 is not sanitised, escaped or validated before inserting to a SQL statement, leading to SQL injection.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/GSEOR – WordPress SEO Plugindescription
- Range: <=1.3
Patches
Vulnerability mechanics
References
2- codevigilant.com/disclosure/2021/wp-plugin-gseor/nvdExploitThird Party Advisory
- wpscan.com/vulnerability/28687291-2369-49e0-8905-dc4359454830nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.