CVE-2021-24659

Summary

The PostX – Gutenberg Blocks for Post Grid WordPress plugin before 2.4.10 allows users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks via the plugin's block.

Affected Software

VendorProductVersion RangeStatus
UnknownPostX – Gutenberg Blocks for Post Grid2.4.10 < 2.4.10affected

Weaknesses

  • CWE-79: CWE-79 Cross-site Scripting (XSS)

ADP Enrichment

CVE Program Container

Additional References

References