Vulnerabilities > CVE-2021-24660 - Unspecified vulnerability in Wpxpo Postx - Gutenberg Blocks for Post Grid
Attack vector
NETWORK Attack complexity
LOW Privileges required
LOW Confidentiality impact
LOW Integrity impact
LOW Availability impact
NONE Summary
The PostX – Gutenberg Blocks for Post Grid WordPress plugin before 2.4.10, with Saved Templates Addon enabled, allows users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks via the plugin's shortcode.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |