| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-22356 | WordPress Jetpack CRM plugin <= 6.7.0 - Local File Inclusion vulnerability | Automattic | Jetpack CRM | - | - | 2026-02-20 15:47:01 | Deep Dive |
| CVE-2023-54332 | Jetpack 11.4 - Cross Site Scripting (XSS) | Automattic | Jetpack | Medium | 6.1 | 2026-01-13 22:56:40 | Deep Dive |
| CVE-2023-7168 | Better Follow Button for Jetpack <= 8.0 - Admin+ Stored XSS | Unknown | Better Follow Button for Jetpack | - | - | 2025-05-15 20:09:24 | Deep Dive |
| CVE-2024-6584 | Jetpack Boost < 3.4.7 - Admin+ SSRF | Unknown | Jetpack Boost | - | - | 2025-05-15 20:07:08 | Deep Dive |
| CVE-2024-10075 | Jetpack < 13.8 - Unauthenticated Arbitrary Block & Shortcode Execution | Unknown | Jetpack | - | - | 2025-05-15 20:06:40 | Deep Dive |
| CVE-2024-10076 | Jetpack < 13.8, Boost < 3.4.8 - Contributor+ Stored XSS | Unknown | Jetpack | - | - | 2025-05-15 20:06:40 | Deep Dive |
| CVE-2024-56006 | WordPress Jetpack Debug Tools plugin < 2.0.1 - Broken Access Control vulnerability | Automattic | Jetpack Debug Tools | Medium | 5.3 | 2025-05-15 18:24:38 | Deep Dive |
| CVE-2025-32494 | WordPress reCAPTCHA Jetpack plugin <= 0.2.2 - Cross Site Request Forgery (CSRF) Vulnerability | bozdoz | reCAPTCHA Jetpack | Medium | 4.3 | 2025-04-09 16:09:48 | Deep Dive |
| CVE-2025-32251 | WordPress Jetpack Feedback Exporter plugin <= 1.23 - Sensitive Data Exposure Vulnerability | J. Tyler Wiest | Jetpack Feedback Exporter | Medium | 5.3 | 2025-04-04 15:59:26 | Deep Dive |
| CVE-2024-10858 | Jetpack 13.0-14.0 - Unauthenticated DOM-XSS | Unknown | Jetpack | 中危 | - | 2024-12-25 06:00:03 | Deep Dive |
| CVE-2024-9926 | Jetpack < 13.9.1 - Subscriber+ Arbitrary Feedback Access | Unknown | Jetpack | - | - | 2024-11-07 15:02:38 | Deep Dive |
| CVE-2023-47788 | WordPress Jetpack plugin < 12.7 - Contributor+ Broken Access Control vulnerability | Automattic | Jetpack | Medium | 4.3 | 2024-06-19 10:33:57 | Deep Dive |
| CVE-2024-4392 | Jetpack – WP Security, Backup, Speed, & Growth <= 13.3.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via wpvideo Shortcode | automattic | Jetpack – WP Security, Backup, Speed, & Growth | Medium | 6.4 | 2024-05-14 08:32:32 | Deep Dive |
| CVE-2024-3940 | reCAPTCHA Jetpack <= 0.2.2 - Settings Update via CSRF | Unknown | reCAPTCHA Jetpack | 中危 | - | 2024-05-10 06:00:03 | Deep Dive |
| CVE-2024-3941 | reCAPTCHA Jetpack <= 0.2.2 - Stored XSS via CSRF | Unknown | reCAPTCHA Jetpack | 中危 | - | 2024-05-10 06:00:03 | Deep Dive |
| CVE-2023-47774 | WordPress Jetpack plugin < 12.7 - Auth. Iframe Injection vulnerability | Automattic | Jetpack | Medium | 5.4 | 2024-04-24 15:58:40 | Deep Dive |
| CVE-2023-45050 | WordPress Jetpack Plugin <= 12.8-a.1 is vulnerable to Cross Site Scripting (XSS) | Automattic | Jetpack – WP Security, Backup, Speed, & Growth | Medium | 6.5 | 2023-11-30 12:07:42 | Deep Dive |
| CVE-2022-3342 | Jetpack CRM <= 5.3.1 - Cross-Site Request Forgery and PHAR Deserialization | automattic | Jetpack CRM – Clients, Leads, Invoices, Billing, Email Marketing, & Automation | High | 7.5 | 2023-10-20 07:29:24 | Deep Dive |
| CVE-2023-2996 | Jetpack < 12.1.1 - Author+ Arbitrary File Manipulation via API | Unknown | Jetpack | 高危 | - | 2023-06-27 13:17:07 | Deep Dive |
| CVE-2023-27429 | WordPress Jetpack CRM Plugin <= 5.4.4 is vulnerable to Cross Site Scripting (XSS) | Automattic - Jetpack CRM team | Jetpack CRM | Medium | 5.9 | 2023-06-21 13:19:21 | Deep Dive |