CVE-2021-24350

Name of the Vulnerable Software and Affected Versions Visitors WordPress plugin versions 0.3 and earlier

Description The issue is related to an Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability. It occurs because the plugin displays the user's user agent string without proper validation or encoding within the WordPress admin panel.

Recommendations For Visitors WordPress plugin versions 0.3 and earlier, update to a version later than 0.3 to resolve the issue. As a temporary workaround, consider restricting access to the WordPress admin panel to minimize the risk of exploitation.