VYPR
Unrated severityNVD Advisory· Published Oct 8, 2024· Updated Oct 9, 2024

Relevanssi < 4.23.1 - Contributor+ Stored XSS

CVE-2024-9021

Description

In the process of testing the Relevanssi WordPress plugin before 4.23.1, a vulnerability was found that allows you to implement Stored XSS on behalf of the Contributor+ by embedding malicious script, which entails account takeover backdoor

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.