Lucene search
+L

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 8:11 p.m.9 views

CVE-2021-39203

WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. In affected versions authenticated users who don't have permission to view private post types/data can bypass restrictions in the block editor under certain conditions. This...

6.8CVSS6.6AI score0.00941EPSS
Exploits0References1
NVD
NVD
added 2021/09/09 10:15 p.m.26 views

CVE-2021-39203

WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. In affected versions authenticated users who don't have permission to view private post types/data can bypass restrictions in the block editor under certain conditions. This...

6.8CVSS0.00941EPSS
Exploits0References2
OSV
OSV
added 2021/09/09 10:15 p.m.5 views

UBUNTU-CVE-2021-39203

WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. In affected versions authenticated users who don't have permission to view private post types/data can bypass restrictions in the block editor under certain conditions. This...

6.8CVSS5.8AI score0.00941EPSS
Exploits0References4
Cvelist
Cvelist
added 2021/09/09 10:0 p.m.28 views

CVE-2021-39203 Private data disclosure/privilege escalation through the block editor in Wordpress

WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. In affected versions authenticated users who don't have permission to view private post types/data can bypass restrictions in the block editor under certain conditions. This...

6.8CVSS6.8AI score0.00941EPSS
Exploits0References2
CVE
CVE
added 2021/09/09 10:0 p.m.95 views

CVE-2021-39203

WordPress 5.8 beta was affected: authenticated users could bypass restrictions in the block editor to view private post types/data under certain conditions. The issue is fixed in the final WordPress 5.8 release; no exploitation details are provided beyond the described bypass during testing.

6.8CVSS6.3AI score0.00941EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2021/09/09 10:0 p.m.29 views

CVE-2021-39203

WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. In affected versions authenticated users who don't have permission to view private post types/data can bypass restrictions in the block editor under certain conditions. This...

6.8CVSS6.2AI score0.00941EPSS
Exploits0
Rows per page
Query Builder