Medium severity4.3NVD Advisory· Published Apr 25, 2022· Updated Jun 17, 2026
CVE-2021-24805
CVE-2021-24805
Description
The DW Question & Answer Pro WordPress plugin through 1.3.4 does not properly check for CSRF in some of its functions, allowing attackers to make logged in users perform unwanted actions, such as update a comment or a question status.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=1.3.4
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/a6be3fcf-60f7-4f13-b773-871a7296113cnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.