Medium severity5.4NVD Advisory· Published Aug 2, 2021· Updated Jun 17, 2026
CVE-2021-24478
CVE-2021-24478
Description
The Bookshelf WordPress plugin through 2.0.4 does not sanitise or escape its "Paypal email address" setting before outputting it in the page, leading to an authenticated Stored Cross-Site Scripting issue
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/Bookshelfdescription
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/c73818e5-0734-46c9-9703-d211b4f58664nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.