Medium severity6.1NVD Advisory· Published Aug 16, 2021· Updated Jun 17, 2026
CVE-2021-24536
CVE-2021-24536
Description
The Custom Login Redirect WordPress plugin through 1.0.0 does not have CSRF check in place when saving its settings, and do not sanitise or escape user input before outputting them back in the page, leading to a Stored Cross-Site Scripting issue
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/Custom Login Redirectdescription
- Range: <=1.0.0
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/e1ca9978-a44d-4717-b963-acaf56258fc9nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.