Medium severity5.3NVD Advisory· Published Oct 18, 2021· Updated Jun 17, 2026
CVE-2021-24677
CVE-2021-24677
Description
The Find My Blocks WordPress plugin before 3.4.0 does not have authorisation checks in its REST API, which could allow unauthenticated users to enumerate private posts' titles.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<3.4.0+ 1 more
- (no CPE)range: <3.4.0
- (no CPE)range: <3.4.0
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/40c7e424-9a97-41ab-a312-2a06b607609anvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.