Vulnerabilities and security researches forwp24-domain-check wp24-domain-check

Jun 07, 2024

CVE, Research URL: 8a115ec34072d3ecd615f543283838c13f7342aa
Home page URL: Security reports for WP24 Domain Check
Application: WP24 Domain Check
Date: Jan 11, 2021
Research Description: WP24 Domain Check [wp24-domain-check] < 1.6.3 WordPress WP24 Domain Check plugin <= 1.6.2 - Stored Cross-Site Scripting (XSS) vulnerability Stored Cross-Site Scripting (XSS) vulnerability found by Mehmet Kelepçe in WordPress WP24 Domain Check plugin (versions <= 1.6.2).
Affected versions: max 1.6.3.
Status: vulnerable

Feb 06, 2025

CVE, Research URL: CVE-2025-24602
Home page URL: Security reports for WP24 Domain Check
Application: WP24 Domain Check
Date: Feb 04, 2025
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP24 WP24 Domain Check allows Reflected XSS. This issue affects WP24 Domain Check: from n/a through 1.10.14.
Affected versions: max 1.10.15.
Status: vulnerable

Jun 11, 2026

CVE, Research URL: CVE-2021-47984
Home page URL: Security reports for WP24 Domain Check
Application: WP24 Domain Check
Date: Jun 08, 2026
Research Description: WordPress Plugin WP24 Domain Check 1.6.2 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts by submitting crafted input to the fieldnameDomain parameter. Attackers can inject JavaScript payloads through the plugin settings form at options.php that execute in the browsers of administrators viewing the settings page.
Affected versions: max 1.6.2.
Status: vulnerable