PostX Gutenberg Blocks Saved Templates Addon < 2.4.10 - Private Content Disclosure
CVE-2021-24661
4.3MEDIUM
What is CVE-2021-24661?
The PostX – Gutenberg Blocks for Post Grid WordPress plugin before 2.4.10, with Saved Templates Addon enabled, allows users with Contributor roles or higher to read password-protected or private post contents the user is otherwise unable to read, given the post ID.
Affected Version(s)
PostX – Gutenberg Blocks for Post Grid 2.4.10