https://vulnerability.circl.lu/sightings/feed 2026-06-01T21:04:48.133748+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/f61692f9-48f1-4a20-b5de-bd663edf1499/export 2026-06-01T21:04:48.465860+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "f61692f9-48f1-4a20-b5de-bd663edf1499", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-24756", "type": "seen", "source": "https://t.me/cibsecurity/33817", "content": "\u203c CVE-2021-24756 \u203c\n\nThe WP System Log WordPress plugin before 1.0.21 does not sanitise, validate and escape the IP address retrieved from login requests before outputting them in the admin dashboard, which could allow unauthenticated attacker to perform Cross-Site Scripting attacks against admins viewing the logs.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-13T14:24:15.000000Z"} 2021-12-13T14:24:15+00:00