CVE-2021-24660

Summary

The PostX – Gutenberg Blocks for Post Grid WordPress plugin before 2.4.10, with Saved Templates Addon enabled, allows users with a role as low as Contributor to perform Stored Cross-Site Scripting attacks via the plugin's shortcode.

Affected Software

VendorProductVersion RangeStatus
UnknownPostX – Gutenberg Blocks for Post Grid2.4.10 < 2.4.10affected

Weaknesses

  • CWE-79: CWE-79 Cross-site Scripting (XSS)

ADP Enrichment

CVE Program Container

Additional References

References