CVE-2024-9926
Published: Nov 7, 2024
Modified: Nov 7, 2024
Description
The Jetpack WordPress plugin does not have proper authorisation in one of its REST endpoint, allowing any authenticated users, such as subscriber to read arbitrary feedbacks data sent via the Jetpack Contact Form
| Vendor | Product | Versions |
|---|---|---|
Unknown | Jetpack | affected 13.9 - < 13.9.1 |
Unknown | Jetpack | affected 13.8 - < 13.8.2 |
Unknown | Jetpack | affected 13.7 - < 13.7.1 |
Unknown | Jetpack | affected 13.6 - < 13.6.1 |
Unknown | Jetpack | affected 13.5 - < 13.5.1 |
Unknown | Jetpack | affected 13.4 - < 13.4.4 |
Unknown | Jetpack | affected 13.3 - < 13.3.2 |
Unknown | Jetpack | affected 13.2 - < 13.2.3 |
Unknown | Jetpack | affected 13.1 - < 13.1.4 |
Unknown | Jetpack | affected 13.0 - < 13.0.1 |
Unknown | Jetpack | affected 12.9 - < 12.9.4 |
Unknown | Jetpack | affected 12.8 - < 12.8.2 |
Unknown | Jetpack | affected 12.7 - < 12.7.2 |
Unknown | Jetpack | affected 12.6 - < 12.6.3 |
Unknown | Jetpack | affected 12.5 - < 12.5.1 |
Unknown | Jetpack | affected 12.4 - < 12.4.1 |
Unknown | Jetpack | affected 12.3 - < 12.3.1 |
Unknown | Jetpack | affected 12.2 - < 12.2.2 |
Unknown | Jetpack | affected 12.1 - < 12.1.2 |
Unknown | Jetpack | affected 12.0 - < 12.0.2 |
Unknown | Jetpack | affected 11.9 - < 11.9.3 |
Unknown | Jetpack | affected 11.8 - < 11.8.6 |
Unknown | Jetpack | affected 11.7 - < 11.7.3 |
Unknown | Jetpack | affected 11.6 - < 11.6.2 |
Unknown | Jetpack | affected 11.5 - < 11.5.3 |
Unknown | Jetpack | affected 11.4 - < 11.4.2 |
Unknown | Jetpack | affected 11.3 - < 11.3.4 |
Unknown | Jetpack | affected 11.2 - < 11.2.2 |
Unknown | Jetpack | affected 11.1 - < 11.1.4 |
Unknown | Jetpack | affected 11.0 - < 11.0.2 |
Unknown | Jetpack | affected 10.9 - < 10.9.3 |
Unknown | Jetpack | affected 10.8 - < 10.8.2 |
Unknown | Jetpack | affected 10.7 - < 10.7.2 |
Unknown | Jetpack | affected 10.6 - < 10.6.2 |
Unknown | Jetpack | affected 10.5 - < 10.5.3 |
Unknown | Jetpack | affected 10.4 - < 10.4.2 |
Unknown | Jetpack | affected 10.3 - < 10.3.2 |
Unknown | Jetpack | affected 10.2 - < 10.2.3 |
Unknown | Jetpack | affected 10.1 - < 10.1.2 |
Unknown | Jetpack | affected 10.0 - < 10.0.2 |
Unknown | Jetpack | affected 9.9 - < 9.9.3 |
Unknown | Jetpack | affected 9.8 - < 9.8.3 |
Unknown | Jetpack | affected 9.7 - < 9.7.3 |
Unknown | Jetpack | affected 9.6 - < 9.6.4 |
Unknown | Jetpack | affected 9.5 - < 9.5.5 |
Unknown | Jetpack | affected 9.4 - < 9.4.4 |
Unknown | Jetpack | affected 9.3 - < 9.3.5 |
Unknown | Jetpack | affected 9.2 - < 9.2.4 |
Unknown | Jetpack | affected 9.1 - < 9.1.3 |
Unknown | Jetpack | affected 9.0 - < 9.0.5 |
Unknown | Jetpack | affected 8.9 - < 8.9.4 |
Unknown | Jetpack | affected 8.8 - < 8.8.5 |
Unknown | Jetpack | affected 8.7 - < 8.7.4 |
Unknown | Jetpack | affected 8.6 - < 8.6.4 |
Unknown | Jetpack | affected 8.5 - < 8.5.3 |
Unknown | Jetpack | affected 8.4 - < 8.4.5 |
Unknown | Jetpack | affected 8.3 - < 8.3.3 |
Unknown | Jetpack | affected 8.2 - < 8.2.6 |
Unknown | Jetpack | affected 8.1 - < 8.1.4 |
Unknown | Jetpack | affected 8.0 - < 8.0.3 |
Unknown | Jetpack | affected 7.9 - < 7.9.4 |
Unknown | Jetpack | affected 7.8 - < 7.8.4 |
Unknown | Jetpack | affected 7.7 - < 7.7.6 |
Unknown | Jetpack | affected 7.6 - < 7.6.4 |
Unknown | Jetpack | affected 7.5 - < 7.5.7 |
Unknown | Jetpack | affected 7.4 - < 7.4.5 |
Unknown | Jetpack | affected 7.3 - < 7.3.5 |
Unknown | Jetpack | affected 7.2 - < 7.2.5 |
Unknown | Jetpack | affected 7.1 - < 7.1.5 |
Unknown | Jetpack | affected 7.0 - < 7.0.5 |
Unknown | Jetpack | affected 6.9 - < 6.9.4 |
Unknown | Jetpack | affected 6.8 - < 6.8.5 |
Unknown | Jetpack | affected 6.7 - < 6.7.4 |
Unknown | Jetpack | affected 6.6 - < 6.6.5 |
Unknown | Jetpack | affected 6.5 - < 6.5.4 |
Unknown | Jetpack | affected 6.4 - < 6.4.6 |
Unknown | Jetpack | affected 6.3 - < 6.3.7 |
Unknown | Jetpack | affected 6.2 - < 6.2.5 |
Unknown | Jetpack | affected 6.1 - < 6.1.5 |
Unknown | Jetpack | affected 6.0 - < 6.0.4 |
Unknown | Jetpack | affected 5.9 - < 5.9.4 |
Unknown | Jetpack | affected 5.8 - < 5.8.4 |
Unknown | Jetpack | affected 5.7 - < 5.7.5 |
Unknown | Jetpack | affected 5.6 - < 5.6.5 |
Unknown | Jetpack | affected 5.5 - < 5.5.5 |
Unknown | Jetpack | affected 5.4 - < 5.4.4 |
Unknown | Jetpack | affected 5.3 - < 5.3.4 |
Unknown | Jetpack | affected 5.2 - < 5.2.5 |
Unknown | Jetpack | affected 5.1 - < 5.1.4 |
Unknown | Jetpack | affected 5.0 - < 5.0.3 |
Unknown | Jetpack | affected 4.9 - < 4.9.3 |
Unknown | Jetpack | affected 4.8 - < 4.8.5 |
Unknown | Jetpack | affected 4.7 - < 4.7.4 |
Unknown | Jetpack | affected 4.6 - < 4.6.3 |
Unknown | Jetpack | affected 4.5 - < 4.5.3 |
Unknown | Jetpack | affected 4.4 - < 4.4.5 |
Unknown | Jetpack | affected 4.3 - < 4.3.5 |
Unknown | Jetpack | affected 4.2 - < 4.2.5 |
Unknown | Jetpack | affected 4.1.0 - < 4.1.4 |
Unknown | Jetpack | affected 4.0.0 - < 4.0.7 |
Unknown | Jetpack | affected 3.9.2 - < 3.9.10 |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now