CVE-2021-47927 | Wpsymposiumpro WP Symposium Pro 2021.10 on WordPress POST Request wps_admin_forum_add_name forum name cross site scripting (Exploit 50514 / EDB-50514)

Inserito da Angelo Barbosa | Mag 10, 2026 | CVE

A vulnerability marked as problematic has been reported in Wpsymposiumpro WP Symposium Pro 2021.10 on WordPress. Impacted is the function wps_admin_forum_add_name of the component POST Request Handler. Performing a manipulation of the argument forum name results in cross site scripting.

This vulnerability is cataloged as CVE-2021-47927. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2021-47927 | Wpsymposiumpro WP Symposium Pro 2021.10 on WordPress POST Request wps_admin_forum_add_name forum name cross site scripting (Exploit 50514 / EDB-50514)

Post correlati

CVE-2026-31730 | Linux Kernel up to 6.6.133/6.12.80/6.18.21/6.19.11 misc fastrpc_init_create_static_process double free

CVE-2024-28847 | open-metadata OpenMetadata up to 1.2.3 validateExpression code injection

CVE-2024-12841 | Emlog Pro up to 2.4.1 /admin/tag.php keyword cross site scripting

CVE-2024-26678 | Linux Kernel up to 6.7.4 efistub memory corruption (4adeeff8c123/1ad55cecf22f)