Lucene search
K

8 matches found

Patchstack
Patchstack
added 2025/12/31 12:0 a.m.6 views

WordPress Jetpack Boost plugin < 3.4.7 - Admin+ SSRF vulnerability

Admin+ SSRF vulnerability discovered by Miguel Xavier Penha Neto in WordPress Plugin Jetpack Boost versions 3.4.7...

9.1CVSS5.9AI score0.00468EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2025/05/16 11:51 p.m.9 views

WordPress Jetpack plugin < 3.4.8 - Contributor+ Stored XSS vulnerability

Contributor+ Stored XSS vulnerability discovered by Marc Montpas in WordPress Plugin Jetpack Boost versions 3.4.8...

5.9CVSS5.9AI score0.00274EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/05/15 8:7 p.m.16 views

CVE-2024-6584 Jetpack Boost < 3.4.7 - Admin+ SSRF

The 'wpajaxboostproxyig' action allows administrators to make GET requests to arbitrary URLs...

0.00468EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/05/15 8:7 p.m.12 views

CVE-2024-6584 Jetpack Boost < 3.4.7 - Admin+ SSRF

The 'wpajaxboostproxyig' action allows administrators to make GET requests to arbitrary URLs...

7.2AI score0.00468EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/05/15 8:6 p.m.10 views

CVE-2024-10076 Jetpack < 13.8, Boost < 3.4.8 - Contributor+ Stored XSS

The Jetpack WordPress plugin before 13.8, Jetpack Boost WordPress plugin before 3.4.8 use regexes in the Site Accelerator features when switching image URLs to their CDN counterpart. Unfortunately, some of them may match patterns it shouldn’t, ultimately making it possible for contributor and abo...

5.9AI score0.00274EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/05/15 12:0 a.m.5 views

WordPress plugin Jetpack Boost 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

9.1CVSS6.7AI score0.00468EPSS
Exploits1References1
OSV
OSV
added 2025/02/03 8:16 a.m.2 views

MAL-2025-1136 Malicious code in jetpack-boost (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5ad5f27610bc7b64b84881ad2ba89f0c7dbe4a43f19215848e62d70dc54616fd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/02/03 8:16 a.m.5 views

Malicious code in jetpack-boost (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5ad5f27610bc7b64b84881ad2ba89f0c7dbe4a43f19215848e62d70dc54616fd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
Rows per page
Query Builder