Advanced AJAX Product Filters, CVE-2021-24432
- CVE, Research URL
- Home page URL
- Application
- Published on
- Jan 16, 2024
- Research Description
- The Advanced AJAX Product Filters WordPress plugin does not sanitise the 'term_id' POST parameter before outputting it in the page, leading to reflected Cross-Site Scripting issue.
- Affected versions
-
max 1.3.7.
- Status
-
vulnerable
| Previous vulnerability researches |
|---|
| Advanced AJAX Product Filters (CVE-2021-24432) , Jun 06, 2024 |
| Advanced AJAX Product Filters (CVE-2025-1505) , Mar 01, 2025 |