3 matches found
CVE-2021-24374 Jetpack < 9.8 - Carousel Module Non-Published Page/Post Attachment Comment Leak
The Jetpack Carousel module of the JetPack WordPress plugin before 9.8 allows users to create a "carousel" type image gallery and allows users to comment on the images. A security vulnerability was found within the Jetpack Carousel module by nguyenhgvcs that allowed the comments of non-published...
CVE-2021-24374
CVE-2021-24374 affects the WordPress Jetpack plugin’s Carousel module prior to version 9.8. A vulnerability in the Carousel feature allows comments from non-published pages/posts to be leaked. The issue is documented across multiple references (NVD entry and related advisories) and is attributed ...
Exposure of Resource to Wrong Sphere
The Jetpack Carousel module of the JetPack WordPress plugin allows users to create a carousel type image gallery and allows users to comment on the images. A security vulnerability was found within the Jetpack Carousel module by nguyenhgvcs that allowed the comments of non-published page/posts to...