IDCVSSSummaryLast (major) updatePublished
CVE-2021-24840 5.0
The Squaretype WordPress theme before 3.0.4 allows unauthenticated users to manipulate the query_vars used to retrieve the posts to display in one of its REST endpoint, without any validation. As a result, private and scheduled posts could be retriev
13-11-2021 - 04:03 08-11-2021 - 18:15
Back to Top Mark selected
Back to Top