Vulnerabilities > CVE-2024-31246 - Missing Authorization vulnerability in Wpxpo Postx

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

wpxpo

CWE-862

NVD

Published: 2024-06-09

Updated: 2024-10-05

Summary

Missing Authorization vulnerability in Post Grid Team by WPXPO PostX – Gutenberg Blocks for Post Grid.This issue affects PostX – Gutenberg Blocks for Post Grid: from n/a through 3.2.3.

Vulnerable Configurations

Part	Description	Count
Application	Wpxpo Wpxpo Postx 1.0.0 Wpxpo Postx 1.0.1 Wpxpo Postx 1.0.2 Wpxpo Postx 1.0.3 Wpxpo Postx 1.0.4 Wpxpo Postx 1.0.5 Wpxpo Postx 1.0.6 Wpxpo Postx 1.0.7 Wpxpo Postx 1.1.0 Wpxpo Postx 1.1.1 Wpxpo Postx 1.1.2 Wpxpo Postx 1.1.3 Wpxpo Postx 1.1.4 Wpxpo Postx 1.1.5 Wpxpo Postx 1.1.6 Wpxpo Postx 1.1.7 Wpxpo Postx 1.1.8 Wpxpo Postx 1.1.9 Wpxpo Postx 1.2.0 Wpxpo Postx 1.2.1 Wpxpo Postx 1.2.2 Wpxpo Postx 1.2.3 Wpxpo Postx 1.2.4 Wpxpo Postx 1.2.5 Wpxpo Postx 1.2.6 Wpxpo Postx 2.0.0 Wpxpo Postx 2.0.1 Wpxpo Postx 2.0.2 Wpxpo Postx 2.0.3 Wpxpo Postx 2.1.0 Wpxpo Postx 2.1.1 Wpxpo Postx 2.1.2 Wpxpo Postx 2.1.3 Wpxpo Postx 2.1.4 Wpxpo Postx 2.1.5 Wpxpo Postx 2.2.0 Wpxpo Postx 2.2.1 Wpxpo Postx 2.2.2 Wpxpo Postx 2.2.3 Wpxpo Postx 2.2.4 Wpxpo Postx 2.4.10 Wpxpo Postx 2.9.0 Wpxpo Postx 2.9.1 Wpxpo Postx 2.9.2 Wpxpo Postx 2.9.3 Wpxpo Postx 2.9.4 Wpxpo Postx 2.9.5 Wpxpo Postx 2.9.6 Wpxpo Postx 2.9.7 Wpxpo Postx 2.9.8 Wpxpo Postx 2.9.9 Wpxpo Postx 2.9.10 Wpxpo Postx 2.9.11 Wpxpo Postx 2.9.12 Wpxpo Postx 2.9.13 Wpxpo Postx 2.9.14 Wpxpo Postx 2.9.15 Wpxpo Postx 3.0.0 Wpxpo Postx 3.0.1 Wpxpo Postx 3.0.2 Wpxpo Postx 3.0.3 Wpxpo Postx 3.0.4 Wpxpo Postx 3.0.5 Wpxpo Postx 3.0.6 Wpxpo Postx 3.0.7 Wpxpo Postx 3.0.8 Wpxpo Postx 3.0.9 Wpxpo Postx 3.1.0 Wpxpo Postx 3.1.1 Wpxpo Postx 3.1.2 Wpxpo Postx 3.1.3 Wpxpo Postx 3.1.4 Wpxpo Postx 3.1.5 Wpxpo Postx 3.1.6 Wpxpo Postx 3.1.7 Wpxpo Postx 3.1.8 Wpxpo Postx 3.1.9 Wpxpo Postx 3.2.0 Wpxpo Postx 3.2.1 Wpxpo Postx 3.2.2 Wpxpo Postx 3.2.3	81

Common Weakness Enumeration (CWE)

CWE-862 - Missing Authorization

References

https://patchstack.com/database/vulnerability/ultimate-post/wordpress-post-grid-gutenberg-blocks-and-wordpress-blog-plugin-postx-plugin-3-2-3-author-post-page-duplication-vulnerability?_s_id=cve