Vulnerabilities > Codesupply > Squaretype > 3.0.3
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-11-08 | CVE-2021-24840 | Authorization Bypass Through User-Controlled Key vulnerability in Codesupply Squaretype The Squaretype WordPress theme before 3.0.4 allows unauthenticated users to manipulate the query_vars used to retrieve the posts to display in one of its REST endpoint, without any validation. | 5.3 |