Jetpack <= 4.0.3 - Multiple Vulnerabilities



Description
Jetpack 4.0.4 fixes 3 security bugs:

* Private feedback form entries were made available publicly via the REST API
* Post By Email settings could be changed
* The Likes module was vulnerable to XSS

Affects Plugin

fixed in version 4.0.4

References

CVE 2016-10705
URL https://jetpack.com/2016/06/20/jetpack-4-0-4-bug-fixes/

Classification

Type MULTI

Miscellaneous

Submitter Anonymous
Views 7316
Verified No
WPVDB ID 8517

Timeline

Publicly Published 2016-06-20 (over 3 years ago)
Added 2016-06-21 (over 3 years ago)
Last Updated 2019-11-01 (about 1 month ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin