Security Advisory

CVE-2021-24546

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-10-11 10:45:29

Last updated 2024-08-03 19:35:20

Assigner WPScan

State PUBLISHED

Description

The Gutenberg Block Editor Toolkit – EditorsKit WordPress plugin before 1.31.6 does not sanitise and validate the Conditional Logic of the Custom Visibility settings, allowing users with a role as low contributor to execute Arbitrary PHP code

← Browse all CVEs View on cve.org ↗