Medium severity5.4NVD Advisory· Published Sep 13, 2021· Updated Jun 17, 2026
CVE-2021-24605
CVE-2021-24605
Description
The create_post_page AJAX action of the Custom Post View Generator WordPress plugin through 0.4.6 (available to authenticated user) does not sanitise or escape user input before outputting it back in the response, leading to a Reflected Cross-Site issue
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/Custom Post View Generatordescription
- Range: <=0.4.6
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/e0be384c-3e63-49f6-b2ab-3024dcd88686nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.