Skip to main content

Page Post Content Shortcode

1 CVEs product

Monthly

CVE-2021-24819 MEDIUM POC This Month

The Page/Post Content Shortcode WordPress plugin through 1.0 does not have proper authorisation in place, allowing users with a role as low as contributor to access draft/private/password. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress Authentication Bypass Page Post Content Shortcode
NVD WPScan
CVSS 3.1
4.3
EPSS
0.8%
EPSS 1% CVSS 4.3
MEDIUM POC This Month

The Page/Post Content Shortcode WordPress plugin through 1.0 does not have proper authorisation in place, allowing users with a role as low as contributor to access draft/private/password. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress Authentication Bypass Page Post Content Shortcode
NVD WPScan

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy