Medium severity5.4NVD Advisory· Published Sep 20, 2021· Updated Jun 17, 2026
CVE-2021-24587
CVE-2021-24587
Description
The Splash Header WordPress plugin before 1.20.8 doesn't sanitise and escape some of its settings while outputting them in the admin dashboard, leading to an authenticated Stored Cross-Site Scripting issue.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<1.20.8+ 1 more
- (no CPE)range: <1.20.8
- (no CPE)range: <1.20.8
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/bb5d94ad-e1ce-44e2-8403-d73fe75a146anvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.