VYPR
Medium severity4.3NVD Advisory· Published Apr 25, 2022· Updated Jun 17, 2026

CVE-2021-24800

CVE-2021-24800

Description

The DW Question & Answer Pro WordPress plugin through 1.3.4 does not check that the comment to edit belongs to the user making the request, allowing any user to edit other comments.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.