Medium severity6.1NVD Advisory· Published May 2, 2022· Updated Jun 17, 2026
CVE-2021-25086
CVE-2021-25086
Description
The Advanced Page Visit Counter WordPress plugin before 6.1.2 does not sanitise and escape some input before outputting it in an admin dashboard page, allowing unauthenticated attackers to perform Cross-Site Scripting attacks against admins viewing it
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: <6.1.2
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/2cf9e517-d882-4af2-bd12-e700b75e7a11nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.