CVE-2021-24237 – The Realteo WordPress plugin before 1.2.4, used by the Findeo Theme, did not properly sani …

22 April 2021

Vuln ID: CVE-2021-24237

Published: 2021-04-22 21:15:09Z

Description: The Realteo WordPress plugin before 1.2.4, used by the Findeo Theme, did not properly sanitise the keyword_search, search_radius. _bedrooms and _bathrooms GET parameters before outputting them in its properties page, leading to an unauthenticated reflected Cross-Site Scripting issue.

Source: NVD.NIST.GOV

Date:

22 April 2021

Categorie(s):

NVD

Tag(s):

NVD

Ring dinged for $5.6M after, among other claims, rogue insider spied on ‘pretty girls’25 April 2024
After a 19-month saga, Broadcom finally patches Brocade SANnav bugs25 April 2024
Navigating the cyber seas: Clarity, compliance, and unified endpoint management 25 April 2024
Dropzone AI nabs $16.85M for its automated breach investigation platform25 April 2024
Millions of IPs remain infected by USB worm years after its creators left it for dead25 April 2024