Lucene search
K

6 matches found

OSV
OSV
added 2021/09/27 4:15 p.m.2 views

CVE-2021-24660

The PostX – Gutenberg Blocks for Post Grid WordPress plugin before 2.4.10, with Saved Templates Addon enabled, allows users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks via the plugin's shortcode...

5.4CVSS5.8AI score0.00517EPSS
Exploits1References1
OSV
OSV
added 2021/09/27 4:15 p.m.7 views

CVE-2021-24661

The PostX – Gutenberg Blocks for Post Grid WordPress plugin before 2.4.10, with Saved Templates Addon enabled, allows users with Contributor roles or higher to read password-protected or private post contents the user is otherwise unable to read, given the post ID...

4.3CVSS5.8AI score0.00739EPSS
Exploits1References1
Prion
Prion
added 2021/09/27 4:15 p.m.15 views

Default credentials

The PostX – Gutenberg Blocks for Post Grid WordPress plugin before 2.4.10, with Saved Templates Addon enabled, allows users with Contributor roles or higher to read password-protected or private post contents the user is otherwise unable to read, given the post ID...

3.5CVSS4.6AI score0.00739EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2021/09/27 12:0 a.m.3 views

WordPress plugin PostX Gutenberg Blocks Saved Templates Addon 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress plugin PostX...

4.3CVSS5.2AI score0.00739EPSS
Exploits1References2
WPVulnDB
WPVulnDB
added 2021/08/26 12:0 a.m.16 views

PostX Gutenberg Blocks Saved Templates Addon < 2.4.10 - Private Content Disclosure

The plugin, with Saved Templates Addon enabled, allows users with Contributor roles or higher to read password-protected or private post contents the user is otherwise unable to read, given the post ID. PoC If the post 1234, created by other users, is set as private, save gutenbergpostblocks...

4.3CVSS1.2AI score0.00739EPSS
Exploits1Affected Software1
WPVulnDB
WPVulnDB
added 2021/08/26 12:0 a.m.17 views

PostX Gutenberg Blocks Saved Templates Addon < 2.4.10 - Contributor+ Stored Cross-Site Scripting

The plugin, with Saved Templates Addon enabled, allows users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks via the plugin's shortcode. PoC Create a page as any user with the following shortcode block: gutenbergpostblocks id='a"...

5.4CVSS3.2AI score0.00517EPSS
Exploits1Affected Software1
Rows per page
Query Builder