Description
WordPress Plugin SendGrid is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently export statistics for a WordPress multi-site main site. WordPress Plugin SendGrid version 1.11.8 is vulnerable; prior versions are also affected.
Remediation
Disable and remove the plugin until a fix is available
References
https://www.wordfence.com/vulnerability-advisories/#CVE-2021-34629
https://wordpress.org/plugins/sendgrid-email-delivery-simplified/#description
Related Vulnerabilities
TYPO3 Resource Management Errors Vulnerability (CVE-2013-1843)
WordPress Plugin WP Mail Logging Security Bypass (1.9.9)
Dotclear Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2014-1613)
WordPress Plugin WordPress Photo Gallery by Gallery Bank Cross-Site Scripting (3.0.228)