Unrated severityNVD Advisory· Published Oct 4, 2021· Updated Aug 3, 2024
Better Find and Replace < 1.2.9 - Reflected Cross-Site Scripting
CVE-2021-24676
Description
The Better Find and Replace WordPress plugin before 1.2.9 does not escape the 's' GET parameter before outputting back in the All Masking Rules page, leading to a Reflected Cross-Site Scripting issue
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/Better Find and Replacedescription
- Range: <1.2.9
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/59589e74-f901-4f4d-81de-26ad19d1b7fdmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.