VYPR
Medium severity5.4NVD Advisory· Published Sep 13, 2021· Updated Jun 17, 2026

CVE-2021-24605

CVE-2021-24605

Description

The create_post_page AJAX action of the Custom Post View Generator WordPress plugin through 0.4.6 (available to authenticated user) does not sanitise or escape user input before outputting it back in the response, leading to a Reflected Cross-Site issue

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.