VYPR

SendGrid WordPress plugin

by WordPress

CVEs (1)

  • CVE-2021-34629MedJul 30, 2021
    risk 0.28cvss 4.3epss 0.01

    The SendGrid WordPress plugin is vulnerable to authorization bypass via the get_ajax_statistics function found in the ~/lib/class-sendgrid-statistics.php file which allows authenticated users to export statistic for a WordPress multi-site main site, in versions up to and…