Vulnerability CVE-2021-24234

Vulnerability CVE-2021-24234

Published: 2021-04-22 Modified: 2021-04-23

Description:

Type:

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
4.3/10	2.9/10	8.6/10

Affected software
Ivorysearch -> Ivory search

https://www.getastra.com/blog/911/plugin-exploit/reflected-xss-vulnerability-in-ivory-search-wp-plugin/

https://www.jinsonvarghese.com/reflected-xss-vulnerability-found-in-ivory-search-plugin/

https://wpscan.com/vulnerability/ecc620be-8e29-4860-9d32-86b5814a3835