CVE-2021-47927
Received Received - Intake
Stored XSS in WP Symposium Pro Plugin via Forum Name Parameter

Publication date: 2026-05-10

Last updated on: 2026-05-10

Assigner: VulnCheck

Description
WordPress Plugin WP Symposium Pro 2021.10 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts by exploiting insufficient sanitization of the forum name parameter. Attackers can submit POST requests to the admin setup page with JavaScript payloads in the wps_admin_forum_add_name parameter, which are stored and executed when the forum is accessed.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-05-10
Last Modified
2026-05-10
Generated
2026-06-21
AI Q&A
2026-05-11
EPSS Evaluated
2026-06-20
NVD
CVE-2021-47927
EUVD
EUVD-2021-34789
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
wp_symposium wp_symposium_pro 2021.10
wp_symposium_pro wp_symposium_pro to 2021.10 (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-79 The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Compliance Impact

The provided context and resources do not contain information regarding the impact of this vulnerability on compliance with common standards and regulations such as GDPR or HIPAA.

Executive Summary

The vulnerability in WordPress Plugin WP Symposium Pro 2021.10 is a stored cross-site scripting (XSS) flaw. It occurs because the plugin does not properly sanitize the forum name parameter. Authenticated attackers can exploit this by sending POST requests to the admin setup page with malicious JavaScript code embedded in the wps_admin_forum_add_name parameter. This malicious code is then stored by the plugin and executed whenever the forum is accessed by users.

Impact Analysis

This vulnerability allows attackers with authenticated access to inject and store malicious scripts within the forum name. When other users access the forum, the malicious scripts execute in their browsers, potentially leading to session hijacking, data theft, or unauthorized actions performed on behalf of the users. This can compromise user accounts and the integrity of the website.

Detection Guidance

This vulnerability can be detected by monitoring POST requests to the admin setup page of the WP Symposium Pro plugin, specifically looking for the parameter wps_admin_forum_add_name containing suspicious JavaScript payloads.

A practical approach is to inspect HTTP POST traffic targeting the admin setup page for the presence of script tags or JavaScript code in the wps_admin_forum_add_name parameter.

For example, using command-line tools like curl or grep on server logs can help identify suspicious inputs.

  • Use grep to search web server logs for suspicious POST data: grep -i 'wps_admin_forum_add_name=.*<script' /path/to/access.log
  • Use curl to simulate a POST request with a test script payload to verify if the system is vulnerable: curl -X POST -d 'wps_admin_forum_add_name=<script>alert(1)</script>' https://yourwordpresssite.com/wp-admin/admin-setup-page
Mitigation Strategies

Immediate mitigation steps include restricting access to the admin setup page to trusted users only, as the vulnerability requires authenticated access.

Additionally, review and sanitize all inputs to the wps_admin_forum_add_name parameter to prevent injection of malicious scripts.

If possible, update the WP Symposium Pro plugin to a version that addresses this vulnerability or consider disabling the plugin entirely, especially since it has been permanently closed by its author.

Monitor and remove any malicious forum names that may have been injected already.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2021-47927. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart