Lucene search
Veracode Vulnerability DatabaseVERACODE:4573HistoryJul 14, 2017 - 10:34 a.m.
Security Bypass
2017-07-1410:34:26
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
9
0.005 Low
EPSS
Percentile
75.5%
jetpack is vulnerable to security bypass. The library does not properly restrict access to it’s XMLRPC functions, allowing a malicious user to view confidential information or publish posts without the proper permissions.
| CPE | Name | Operator | Version |
|---|---|---|---|
| automattic/jetpack | le | 2.8 | |
| automattic/jetpack | le | 2.9.2 |
Related
prion
prion
Information disclosure
2014-04-22 13:06:00
nessus
nessus
Jetpack Plugin for WordPress Security Bypass
2014-04-23 00:00:00
patchstack
patchstack
WordPress Jetpack Plugin <= 2.9.2 - Security BYPASS
2013-12-03 00:00:00
wpvulndb
wpvulndb
Jetpack <= 2.9.2 - class.jetpack.php XML-RPC Access Control Bypass
2014-08-01 10:59:13
seebug
seebug
WordPress Jetpack插件安全绕过漏洞
2014-04-17 00:00:00
cvelist
cvelist
CVE-2014-0173
2014-04-21 14:00:00
nvd
nvd
CVE-2014-0173
2014-04-22 13:06:27
cve
cve
CVE-2014-0173
2014-04-22 13:06:27