Vulnerabilities > CVE-2021-24661 - Unspecified vulnerability in Wpxpo Postx - Gutenberg Blocks for Post Grid

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

wpxpo

NVD

Published: 2021-09-27

Updated: 2023-11-07

Summary

The PostX – Gutenberg Blocks for Post Grid WordPress plugin before 2.4.10, with Saved Templates Addon enabled, allows users with Contributor roles or higher to read password-protected or private post contents the user is otherwise unable to read, given the post ID.

Vulnerable Configurations

Part	Description	Count
Application	Wpxpo Wpxpo Postx Gutenberg Blocks FOR Post Grid *	1

References

https://wpscan.com/vulnerability/8d966ff1-9c88-43c7-8f4b-93c88e214677