← back
CVE-2021-24926

Domain Check < 1.0.17 - Reflected Cross-Site Scripting

EPSS 12.9%
The Domain Check WordPress plugin before 1.0.17 does not sanitise and escape the domain parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting issue
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/50697unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://wpscan.com/vulnerability/8cc7cbbd-f74f-4f30-9483-573641fea733