CVE-2021-24367

Name of the Vulnerable Software and Affected Versions WP Config File Editor WordPress plugin versions 1.7.1 and earlier

Description The issue is related to an Authenticated Stored Cross-Site Scripting (XSS) vulnerability. This means that an attacker could potentially inject malicious scripts into the application, which would then be executed by the user's browser. However, no information is provided about the estimated number of potentially affected devices worldwide or details about real-world incidents where this issue was exploited.

Recommendations For WP Config File Editor WordPress plugin versions 1.7.1 and earlier, update to a version later than 1.7.1 to resolve the issue.