Approved changes feed: RSS · Atom

cpe:2.3:a:tagdiv:newsmag:*:*:*:*:*:wordpress:*:*

part: a version: * update: *

VendorTagdiv (4e687ca4-50b6-55c5-bb8c-ca6764b542c0)
ProductNewsmag (9b8ab86a-427a-54a2-b591-47985b5a25d5)
Edition*
Language*
Software edition*
Target softwarewordpress
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2021-24304 vulnerable 2026-06-08 05:30:04.150097 Newsmag < 5.0 - Unauthenticated Reflected Cross-site Scripting (XSS)
The Newsmag WordPress theme before 5.0 does not sanitise the td_block_id parameter in its td_ajax_block AJAX action, leading to an unauthenticated Reflected Cross-site Scripting (XSS) vulnerability.
Published: 2021-08-09T10:04:04.000Z
Updated: 2024-08-03T19:28:23.440Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.