MEDIUM
WP24
CVE published 2026-06-08
CVE-2021-47984
CVE-2021-47984 is a stored cross-site scripting (XSS) vulnerability in WordPress Plugin WP24 Domain Check version 1.6.2. The vulnerability allows authenticated attackers to inject malicious scripts by submitting crafted input to the fieldnameDomain parameter. Attackers can inject JavaScript payloads through the plugin settings form at options.php that execute in the browsers of administrators viewing the [truncated]