Description
WordPress Plugin SendGrid is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently export statistics for a WordPress multi-site main site. WordPress Plugin SendGrid version 1.11.8 is vulnerable; prior versions are also affected.
Remediation
Disable and remove the plugin until a fix is available
References
https://www.wordfence.com/vulnerability-advisories/#CVE-2021-34629
https://wordpress.org/plugins/sendgrid-email-delivery-simplified/#description
Related Vulnerabilities
WordPress Plugin QueryWall:Plug'n Play Firewall Cross-Site Scripting (1.1.0)
WordPress Plugin WordPress Landing Pages Multiple Vulnerabilities (1.8.4)
WordPress Plugin SrbTransLatin Multiple Vulnerabilities (1.46)
Joomla! Core 3.x.x Security Bypass (3.7.0 - 3.8.11)
WordPress Plugin Gmedia Photo Gallery Arbitrary File Upload (1.2.1)