WordPress Plugin Post Grid Gutenberg Blocks and WordPress Blog-PostX Multiple Vulnerabilities - CVE-2021-24660

WordPress Plugin Post Grid Gutenberg Blocks and WordPress Blog-PostX is prone to multiple vulnerabilities including cross-site scripting and security bypass vulnerabilities. Exploiting these issues may allow an attacker to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site to steal cookie-based authentication credentials or to perform otherwise restricted actions and subsequently modify/delete/add ultp_options values or read password-protected or private posts. WordPress Plugin Post Grid Gutenberg Blocks and WordPress Blog-PostX version 2.4.9 is vulnerable prior versions may also be affected.