The Getwid – Gutenberg Blocks plugin for WordPress is vulnerable to a security issue called Server Side Request Forgery. This issue is present in versions up to and including 1.8.3 of the plugin. The security issue can be used by attackers that are authenticated with subscriber level permissions or higher to make requests from the web application to other locations. This can be used to query and modify information from internal services.