CPE-FD13E42D-FB9A-4345-B2B0-5FAB360C7B0C Detail

CPE Details

Automattic JetPack plugin for WordPress 2.3.1

Vendor

automattic

Product

jetpack

Version

2.3.1

Created

2014-04-22
13h51 +00:00

Modified

2014-04-30
23h28 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:automattic:jetpack:2.3.1:::::wordpress::

Informations

Vendor

automattic

Product

jetpack

Version

2.3.1

Target Software

wordpress

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2023-45050	2023-11-30 12h07 +00:00	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Automattic Jetpack – WP Security, Backup, Speed, & Growth allows Stored XSS.This issue affects Jetpack – WP Security, Backup, Speed, & Growth: from n/a through 12.8-a.1.	6.5	Medium
CVE-2023-2996	2023-06-27 13h17 +00:00	The Jetpack WordPress plugin before 12.1.1 does not validate uploaded files, allowing users with author roles or above to manipulate existing files on the site, deleting arbitrary files, and in rare cases achieve Remote Code Execution via phar deserialization.	8.8	High
CVE-2021-24374	2021-06-21 17h18 +00:00	The Jetpack Carousel module of the JetPack WordPress plugin before 9.8 allows users to create a "carousel" type image gallery and allows users to comment on the images. A security vulnerability was found within the Jetpack Carousel module by nguyenhg_vcs that allowed the comments of non-published page/posts to be leaked.	5.3	Medium
CVE-2015-9359	2019-08-28 12h23 +00:00	The Jetpack plugin before 3.4.3 for WordPress has XSS via add_query_arg() and remove_query_arg().	6.1	Medium
CVE-2016-10705	2018-01-12 19h00 +00:00	The Jetpack plugin before 4.0.4 for WordPress has XSS via the Likes module.	6.1	Medium
CVE-2016-10706	2018-01-12 19h00 +00:00	The Jetpack plugin before 4.0.3 for WordPress has XSS via a crafted Vimeo link.	6.1	Medium
CVE-2014-0173	2014-04-21 12h00 +00:00	The Jetpack plugin before 1.9 before 1.9.4, 2.0.x before 2.0.9, 2.1.x before 2.1.4, 2.2.x before 2.2.7, 2.3.x before 2.3.7, 2.4.x before 2.4.4, 2.5.x before 2.5.2, 2.6.x before 2.6.3, 2.7.x before 2.7.2, 2.8.x before 2.8.2, and 2.9.x before 2.9.3 for WordPress does not properly restrict access to the XML-RPC service, which allows remote attackers to bypass intended restrictions and publish posts via unspecified vectors. NOTE: some of these details are obtained from third party information.	5.8
CVE-2011-4673	2011-12-02 17h00 +00:00	SQL injection vulnerability in modules/sharedaddy.php in the Jetpack plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the id parameter.	7.5

Automattic JetPack plugin for WordPress 2.3.1

CPE Details

CPE Name: cpe:2.3:a:automattic:jetpack:2.3.1:*:*:*:*:wordpress:*:*

Informations

Vendor

Product

Version

Target Software

Related CVE

CPE Name: cpe:2.3:a:automattic:jetpack:2.3.1:::::wordpress::