Description
WordPress Plugin SendGrid is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently export statistics for a WordPress multi-site main site. WordPress Plugin SendGrid version 1.11.8 is vulnerable; prior versions are also affected.
Remediation
Disable and remove the plugin until a fix is available
References
https://www.wordfence.com/vulnerability-advisories/#CVE-2021-34629
https://wordpress.org/plugins/sendgrid-email-delivery-simplified/#description
Related Vulnerabilities
Oracle Database Server Other Vulnerability (CVE-2006-7141)
Django Use of Persistent Cookies Containing Sensitive Information Vulnerability (CVE-2026-35192)
WordPress Plugin PropertyHive Remote Code Execution (1.4.25)
MyBB Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-9410)