CVE-2021-24901: 
WordPress vulnerability analysis and mitigation

The Security Audit WordPress plugin through version 1.0.0 contains a stored Cross-Site Scripting (XSS) vulnerability identified as CVE-2021-24901. The vulnerability was discovered by Shweta Mahajan and publicly disclosed on November 15, 2021. The issue affects the titan-labs-security-audit plugin and stems from improper handling of the Data Id setting (WPScan, CVE Mitre).

The vulnerability exists because the plugin fails to properly sanitize and escape the Data Id setting, enabling Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed. The vulnerability has been assigned a CVSS score of 3.4 (low severity) and is classified under CWE-79. The issue can be exploited through the plugin's settings page at /wp-admin/edit.php?post_type=tlsa_audit&page=tlsa_settings (WPScan).

When exploited, this vulnerability allows high-privilege users to perform Cross-Site Scripting attacks on the WordPress installation, potentially affecting other users of the system. The attack can be executed even when the unfiltered_html capability is disabled, which is a security control meant to prevent such attacks (WPScan).

As of the last update, there is no known fix available for this vulnerability. Users of the Security Audit plugin should consider either removing the plugin or implementing additional security controls to restrict access to the affected settings page (WPScan).