EPSS
Percentile
24.8%
Authenticated Stored Cross-Site Scripting (XSS) vulnerability discovered by xiahao in WordPress Splash Header plugin (versions <= 1.20.7).
Update the WordPress Splash Header plugin to the latest available version (at least 1.20.8).
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-24587
wordpress.org/plugins/splash-header/#developers
wpscan.com/vulnerability/bb5d94ad-e1ce-44e2-8403-d73fe75a146a