CVE-2021-24488

CVE-2021-24488: Post Grid < 2.1.8 - Reflected Cross-Site Scripting (XSS)

Vendor Unknown
Product Post Grid
Weakness CWE-79 · XSS
Published August 2, 2021
Last update August 3, 2024

CVSS base score

What the vulnerability does

01Description

The slider import search feature and tab parameter of the Post Grid WordPress plugin before 2.1.8 settings are not properly sanitised before being output back in the pages, leading to Reflected Cross-Site Scripting issues

Key dates

02Disclosure timeline

August 2, 2021 CVE published
August 3, 2024 Record updated