CVE-2021-24432
16.01.2024, 16:15
The Advanced AJAX Product Filters WordPress plugin does not sanitise the 'term_id' POST parameter before outputting it in the page, leading to reflected Cross-Site Scripting issue.
| Vendor | Product | Version |
|---|---|---|
| berocket | advanced_ajax_product_filters | 𝑥 < 1.5.4.7 |
𝑥
= Vulnerable software versions