ID | CVSS | Summary | Last (major) update | Published | |
CVE-2021-24840 | 5.0 |
The Squaretype WordPress theme before 3.0.4 allows unauthenticated users to manipulate the query_vars used to retrieve the posts to display in one of its REST endpoint, without any validation. As a result, private and scheduled posts could be retriev
|
13-11-2021 - 04:03 | 08-11-2021 - 18:15 |