Medium severity6.1NVD Advisory· Published Sep 13, 2021· Updated Jun 17, 2026
CVE-2021-24510
CVE-2021-24510
Description
The MF Gig Calendar WordPress plugin before 1.2 does not sanitise and escape the id GET parameter before outputting back in the admin dashboard when editing an Event, leading to a reflected Cross-Site Scripting issue
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/MF Gig Calendardescription
- Range: <1.2
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/715721b0-13a1-413a-864d-2380f38ecd39nvdThird Party Advisory
News mentions
0No linked articles in our index yet.