CyberSec.Space Logo
Back to CVE Browser

CVE-2021-24659

MEDIUM
5.4
CVSS Severity Score
EPSS Score0.1440%
EPSS Percentile13.09th
PublishedSep 27, 2021
Last ModifiedNov 21, 2024

Vulnerability Description

The PostX – Gutenberg Blocks for Post Grid WordPress plugin before 2.4.10 allows users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks via the plugin's block.

Affected Platforms (CPE)

πŸ“¦
Wpxpo

Postx Gutenberg Blocks For Post Grid

< 2.4.10

References & Advisories

πŸ”— https://wpscan.com/vulnerability/5f2fe510-7513-4d33-82d9-3107b3b3f2ae
πŸ”— https://wpscan.com/vulnerability/5f2fe510-7513-4d33-82d9-3107b3b3f2ae

Related Vulnerabilities

CVE-2021-246526.5

The PostX – Gutenberg Blocks for Post Grid WordPress plugin before 2.4.10 performs incorrect checks before allowing any logged in ...

CVE-2021-246605.4

The PostX – Gutenberg Blocks for Post Grid WordPress plugin before 2.4.10, with Saved Templates Addon enabled, allows users with a...

CVE-2021-246614.3

The PostX – Gutenberg Blocks for Post Grid WordPress plugin before 2.4.10, with Saved Templates Addon enabled, allows users with C...

CVE-2021-3467910.0

Thycotic Password Reset Server before 5.3.0 allows credential disclosure.