VYPR
Medium severity6.1NVD Advisory· Published Dec 27, 2021· Updated Jun 17, 2026

CVE-2021-24984

CVE-2021-24984

Description

The WPFront User Role Editor WordPress plugin before 3.2.1.11184 does not sanitise and escape the changes-saved parameter before outputting it back in the admin dashboard, leading to a Reflected Cross-Site Scripting

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.