Action not permitted
Modal body text goes here.
Modal Title
Modal Body
FKIE_CVE-2024-9926
Vulnerability from fkie_nvd - Published: 2024-11-07 15:15 - Updated: 2025-05-28 20:51
Severity ?
Summary
The Jetpack WordPress plugin does not have proper authorisation in one of its REST endpoint, allowing any authenticated users, such as subscriber to read arbitrary feedbacks data sent via the Jetpack Contact Form
References
| URL | Tags | ||
|---|---|---|---|
| contact@wpscan.com | https://wpscan.com/vulnerability/669382af-f836-4896-bdcb-5c6a57c99bd9/ | Exploit, Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| automattic | jetpack | * | |
| automattic | jetpack | * | |
| automattic | jetpack | * | |
| automattic | jetpack | * | |
| automattic | jetpack | * | |
| automattic | jetpack | 13.0 | |
| automattic | jetpack | 13.5 | |
| automattic | jetpack | 13.6 | |
| automattic | jetpack | 13.7 | |
| automattic | jetpack | 13.9 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:automattic:jetpack:*:*:*:*:*:wordpress:*:*",
"matchCriteriaId": "52C880A8-10D6-465C-BBE4-A16E616C8265",
"versionEndExcluding": "13.1.4",
"versionStartIncluding": "13.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:automattic:jetpack:*:*:*:*:*:wordpress:*:*",
"matchCriteriaId": "FCFCEFF3-DA25-44C4-9146-79E80F032119",
"versionEndExcluding": "13.2.3",
"versionStartIncluding": "13.2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:automattic:jetpack:*:*:*:*:*:wordpress:*:*",
"matchCriteriaId": "FBAB98F8-28E4-4734-99BC-409FB23A2C29",
"versionEndExcluding": "13.3.2",
"versionStartIncluding": "13.3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:automattic:jetpack:*:*:*:*:*:wordpress:*:*",
"matchCriteriaId": "6721DC26-A954-4946-80E3-D258756C30FE",
"versionEndExcluding": "13.4.4",
"versionStartIncluding": "13.4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:automattic:jetpack:*:*:*:*:*:wordpress:*:*",
"matchCriteriaId": "286CD858-41BC-4B3B-B438-197FF083DC26",
"versionEndExcluding": "13.8.2",
"versionStartIncluding": "13.8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:automattic:jetpack:13.0:*:*:*:*:wordpress:*:*",
"matchCriteriaId": "192B904F-72CC-47F4-90DE-809F4B7C5210",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:automattic:jetpack:13.5:*:*:*:*:wordpress:*:*",
"matchCriteriaId": "36B9ED36-0F34-4CC3-A094-C75D205F293D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:automattic:jetpack:13.6:*:*:*:*:wordpress:*:*",
"matchCriteriaId": "35BDF8B0-6721-4EC5-95D9-1B4B705CBD59",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:automattic:jetpack:13.7:*:*:*:*:wordpress:*:*",
"matchCriteriaId": "4997D8BF-600C-432B-9669-86C887EF3A84",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:automattic:jetpack:13.9:*:*:*:*:wordpress:*:*",
"matchCriteriaId": "48FF3595-22A6-43F3-869F-21A539307C29",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The Jetpack WordPress plugin does not have proper authorisation in one of its REST endpoint, allowing any authenticated users, such as subscriber to read arbitrary feedbacks data sent via the Jetpack Contact Form"
},
{
"lang": "es",
"value": "El complemento Jetpack WordPress no tiene la autorizaci\u00f3n adecuada en uno de sus endpoints REST, lo que permite que cualquier usuario autenticado, como un suscriptor, lea datos de comentarios arbitrarios enviados a trav\u00e9s del formulario de contacto de Jetpack."
}
],
"id": "CVE-2024-9926",
"lastModified": "2025-05-28T20:51:40.900",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 1.4,
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
},
"published": "2024-11-07T15:15:05.860",
"references": [
{
"source": "contact@wpscan.com",
"tags": [
"Exploit",
"Third Party Advisory"
],
"url": "https://wpscan.com/vulnerability/669382af-f836-4896-bdcb-5c6a57c99bd9/"
}
],
"sourceIdentifier": "contact@wpscan.com",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
CVE-2024-9926 (GCVE-0-2024-9926)
Vulnerability from cvelistv5 – Published: 2024-11-07 15:02 – Updated: 2024-11-07 19:53
VLAI?
EPSS
Summary
The Jetpack WordPress plugin does not have proper authorisation in one of its REST endpoint, allowing any authenticated users, such as subscriber to read arbitrary feedbacks data sent via the Jetpack Contact Form
Severity ?
4.3 (Medium)
Assigner
References
| URL | Tags | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | Version | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Unknown | Jetpack |
Affected:
13.9 , < 13.9.1
(semver)
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Credits
Marc Montpas
WPScan
{
"containers": {
"adp": [
{
"affected": [
{
"cpes": [
"cpe:2.3:a:automattic:jetpack:*:*:*:*:*:wordpress:*:*"
],
"defaultStatus": "unaffected",
"product": "jetpack",
"vendor": "automattic",
"versions": [
{
"lessThan": "13.9.1",
"status": "affected",
"version": "13.9",
"versionType": "semver"
},
{
"lessThan": "13.8.2",
"status": "affected",
"version": "13.8",
"versionType": "semver"
},
{
"lessThan": "13.7.1",
"status": "affected",
"version": "13.7",
"versionType": "semver"
},
{
"lessThan": "13.6.1",
"status": "affected",
"version": "13.6",
"versionType": "semver"
},
{
"lessThan": "13.5.1",
"status": "affected",
"version": "13.5",
"versionType": "semver"
},
{
"lessThan": "13.4.4",
"status": "affected",
"version": "13.4",
"versionType": "semver"
},
{
"lessThan": "13.3.2",
"status": "affected",
"version": "13.3",
"versionType": "semver"
},
{
"lessThan": "13.2.3",
"status": "affected",
"version": "13.2",
"versionType": "semver"
},
{
"lessThan": "13.1.4",
"status": "affected",
"version": "13.1",
"versionType": "semver"
},
{
"lessThan": "13.0.1",
"status": "affected",
"version": "13.0",
"versionType": "semver"
},
{
"lessThan": "12.9.4",
"status": "affected",
"version": "12.9",
"versionType": "semver"
},
{
"lessThan": "12.8.2",
"status": "affected",
"version": "12.8",
"versionType": "semver"
},
{
"lessThan": "12.7.2",
"status": "affected",
"version": "12.7",
"versionType": "semver"
},
{
"lessThan": "12.6.3",
"status": "affected",
"version": "12.6",
"versionType": "semver"
},
{
"lessThan": "12.5.1",
"status": "affected",
"version": "12.5",
"versionType": "semver"
},
{
"lessThan": "12.4.1",
"status": "affected",
"version": "12.4",
"versionType": "semver"
},
{
"lessThan": "12.3.1",
"status": "affected",
"version": "12.3",
"versionType": "semver"
},
{
"lessThan": "12.2.2",
"status": "affected",
"version": "12.2",
"versionType": "semver"
},
{
"lessThan": "12.1.2",
"status": "affected",
"version": "12.1",
"versionType": "semver"
},
{
"lessThan": "12.0.2",
"status": "affected",
"version": "12.0",
"versionType": "semver"
},
{
"lessThan": "11.9.3",
"status": "affected",
"version": "11.9",
"versionType": "semver"
},
{
"lessThan": "11.8.6",
"status": "affected",
"version": "11.8",
"versionType": "semver"
},
{
"lessThan": "11.7.3",
"status": "affected",
"version": "11.7",
"versionType": "semver"
},
{
"lessThan": "11.6.2",
"status": "affected",
"version": "11.6",
"versionType": "semver"
},
{
"lessThan": "11.5.3",
"status": "affected",
"version": "11.5",
"versionType": "semver"
},
{
"lessThan": "11.4.2",
"status": "affected",
"version": "11.4",
"versionType": "semver"
},
{
"lessThan": "11.3.4",
"status": "affected",
"version": "11.3",
"versionType": "semver"
},
{
"lessThan": "11.2.2",
"status": "affected",
"version": "11.2",
"versionType": "semver"
},
{
"lessThan": "11.1.4",
"status": "affected",
"version": "11.1",
"versionType": "semver"
},
{
"lessThan": "11.0.2",
"status": "affected",
"version": "11.0",
"versionType": "semver"
},
{
"lessThan": "10.9.3",
"status": "affected",
"version": "10.9",
"versionType": "semver"
},
{
"lessThan": "10.8.2",
"status": "affected",
"version": "10.8",
"versionType": "semver"
},
{
"lessThan": "10.7.2",
"status": "affected",
"version": "10.7",
"versionType": "semver"
},
{
"lessThan": "10.6.2",
"status": "affected",
"version": "10.6",
"versionType": "semver"
},
{
"lessThan": "10.5.3",
"status": "affected",
"version": "10.5",
"versionType": "semver"
},
{
"lessThan": "10.4.2",
"status": "affected",
"version": "10.4",
"versionType": "semver"
},
{
"lessThan": "10.3.2",
"status": "affected",
"version": "10.3",
"versionType": "semver"
},
{
"lessThan": "10.2.3",
"status": "affected",
"version": "10.2",
"versionType": "semver"
},
{
"lessThan": "10.1.2",
"status": "affected",
"version": "10.1",
"versionType": "semver"
},
{
"lessThan": "10.0.2",
"status": "affected",
"version": "10.0",
"versionType": "semver"
},
{
"lessThan": "9.9.3",
"status": "affected",
"version": "9.9",
"versionType": "semver"
},
{
"lessThan": "9.8.3",
"status": "affected",
"version": "9.8",
"versionType": "semver"
},
{
"lessThan": "9.7.3",
"status": "affected",
"version": "9.7",
"versionType": "semver"
},
{
"lessThan": "9.6.4",
"status": "affected",
"version": "9.6",
"versionType": "semver"
},
{
"lessThan": "9.5.5",
"status": "affected",
"version": "9.5",
"versionType": "semver"
},
{
"lessThanOrEqual": "9.4.4",
"status": "affected",
"version": "9.4",
"versionType": "semver"
},
{
"lessThan": "9.3.5",
"status": "affected",
"version": "9.3",
"versionType": "semver"
},
{
"lessThan": "9.2.4",
"status": "affected",
"version": "9.2",
"versionType": "semver"
},
{
"lessThan": "9.1.3",
"status": "affected",
"version": "9.1",
"versionType": "semver"
},
{
"lessThan": "9.0.5",
"status": "affected",
"version": "9.0",
"versionType": "semver"
},
{
"lessThan": "8.9.4",
"status": "affected",
"version": "8.9",
"versionType": "semver"
},
{
"lessThan": "8.8.5",
"status": "affected",
"version": "8.8",
"versionType": "semver"
},
{
"lessThan": "8.7.4",
"status": "affected",
"version": "8.7",
"versionType": "semver"
},
{
"lessThan": "8.6.4",
"status": "affected",
"version": "8.6",
"versionType": "semver"
},
{
"lessThan": "8.5.3",
"status": "affected",
"version": "8.5",
"versionType": "semver"
},
{
"lessThan": "8.4.5",
"status": "affected",
"version": "8.4",
"versionType": "semver"
},
{
"lessThan": "8.3.3",
"status": "affected",
"version": "8.3",
"versionType": "semver"
},
{
"lessThan": "8.2.6",
"status": "affected",
"version": "8.2",
"versionType": "semver"
},
{
"lessThan": "8.1.4",
"status": "affected",
"version": "8.1",
"versionType": "semver"
},
{
"lessThan": "8.0.3",
"status": "affected",
"version": "8.0",
"versionType": "semver"
},
{
"lessThan": "7.9.4",
"status": "affected",
"version": "7.9",
"versionType": "semver"
},
{
"lessThan": "7.8.4",
"status": "affected",
"version": "7.8",
"versionType": "semver"
},
{
"lessThan": "7.7.6",
"status": "affected",
"version": "7.7",
"versionType": "semver"
},
{
"lessThan": "7.6.4",
"status": "affected",
"version": "7.6",
"versionType": "semver"
},
{
"lessThan": "7.5.7",
"status": "affected",
"version": "7.5",
"versionType": "semver"
},
{
"lessThan": "7.4.5",
"status": "affected",
"version": "7.4",
"versionType": "semver"
},
{
"lessThan": "7.3.5",
"status": "affected",
"version": "7.3",
"versionType": "semver"
},
{
"lessThan": "7.2.5",
"status": "affected",
"version": "7.2",
"versionType": "semver"
},
{
"lessThan": "7.1.5",
"status": "affected",
"version": "7.1",
"versionType": "semver"
},
{
"lessThan": "7.0.5",
"status": "affected",
"version": "7.0",
"versionType": "semver"
},
{
"lessThan": "6.9.4",
"status": "affected",
"version": "6.9",
"versionType": "semver"
},
{
"lessThan": "6.8.5",
"status": "affected",
"version": "6.8",
"versionType": "semver"
},
{
"lessThan": "6.7.4",
"status": "affected",
"version": "6.7",
"versionType": "semver"
},
{
"lessThan": "6.6.5",
"status": "affected",
"version": "6.6",
"versionType": "semver"
},
{
"lessThan": "6.5.4",
"status": "affected",
"version": "6.5",
"versionType": "semver"
},
{
"lessThan": "6.4.6",
"status": "affected",
"version": "6.4",
"versionType": "semver"
},
{
"lessThan": "6.3.7",
"status": "affected",
"version": "6.3",
"versionType": "semver"
},
{
"lessThan": "6.2.5",
"status": "affected",
"version": "6.2",
"versionType": "semver"
},
{
"lessThan": "6.1.5",
"status": "affected",
"version": "6.1",
"versionType": "semver"
},
{
"lessThan": "6.0.4",
"status": "affected",
"version": "6.0",
"versionType": "semver"
},
{
"lessThan": "5.9.4",
"status": "affected",
"version": "5.9",
"versionType": "semver"
},
{
"lessThan": "5.8.4",
"status": "affected",
"version": "5.8",
"versionType": "semver"
},
{
"lessThan": "5.7.5",
"status": "affected",
"version": "5.7",
"versionType": "semver"
},
{
"lessThan": "5.6.5",
"status": "affected",
"version": "5.6",
"versionType": "semver"
},
{
"lessThan": "5.5.5",
"status": "affected",
"version": "5.5",
"versionType": "semver"
},
{
"lessThan": "5.4.4",
"status": "affected",
"version": "5.4",
"versionType": "semver"
},
{
"lessThan": "5.3.4",
"status": "affected",
"version": "5.3",
"versionType": "semver"
},
{
"lessThan": "5.2.5",
"status": "affected",
"version": "5.2",
"versionType": "semver"
},
{
"lessThan": "5.1.4",
"status": "affected",
"version": "5.1",
"versionType": "semver"
},
{
"lessThan": "5.0.3",
"status": "affected",
"version": "5.0",
"versionType": "semver"
},
{
"lessThan": "4.9.3",
"status": "affected",
"version": "4.9",
"versionType": "semver"
},
{
"lessThan": "4.8.5",
"status": "affected",
"version": "4.8",
"versionType": "semver"
},
{
"lessThan": "4.7.4",
"status": "affected",
"version": "4.7",
"versionType": "semver"
},
{
"lessThan": "4.6.3",
"status": "affected",
"version": "4.6",
"versionType": "semver"
},
{
"lessThan": "4.5.3",
"status": "affected",
"version": "4.5",
"versionType": "semver"
},
{
"lessThan": "4.4.5",
"status": "affected",
"version": "4.4",
"versionType": "semver"
},
{
"lessThan": "4.3.5",
"status": "affected",
"version": "4.3",
"versionType": "semver"
},
{
"lessThan": "4.2.5",
"status": "affected",
"version": "4.2",
"versionType": "semver"
},
{
"lessThan": "4.1.4",
"status": "affected",
"version": "4.1.0",
"versionType": "semver"
},
{
"lessThan": "4.0.7",
"status": "affected",
"version": "4.0.0",
"versionType": "semver"
},
{
"lessThan": "3.9.10",
"status": "affected",
"version": "3.9.2",
"versionType": "semver"
}
]
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2024-9926",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-11-07T18:35:48.550122Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-11-07T19:53:07.815Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "13.9.1",
"status": "affected",
"version": "13.9",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "13.8.2",
"status": "affected",
"version": "13.8",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "13.7.1",
"status": "affected",
"version": "13.7",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "13.6.1",
"status": "affected",
"version": "13.6",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "13.5.1",
"status": "affected",
"version": "13.5",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "13.4.4",
"status": "affected",
"version": "13.4",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "13.3.2",
"status": "affected",
"version": "13.3",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "13.2.3",
"status": "affected",
"version": "13.2",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "13.1.4",
"status": "affected",
"version": "13.1",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "13.0.1",
"status": "affected",
"version": "13.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "12.9.4",
"status": "affected",
"version": "12.9",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "12.8.2",
"status": "affected",
"version": "12.8",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "12.7.2",
"status": "affected",
"version": "12.7",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "12.6.3",
"status": "affected",
"version": "12.6",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "12.5.1",
"status": "affected",
"version": "12.5",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "12.4.1",
"status": "affected",
"version": "12.4",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "12.3.1",
"status": "affected",
"version": "12.3",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "12.2.2",
"status": "affected",
"version": "12.2",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "12.1.2",
"status": "affected",
"version": "12.1",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "12.0.2",
"status": "affected",
"version": "12.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "11.9.3",
"status": "affected",
"version": "11.9",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "11.8.6",
"status": "affected",
"version": "11.8",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "11.7.3",
"status": "affected",
"version": "11.7",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "11.6.2",
"status": "affected",
"version": "11.6",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "11.5.3",
"status": "affected",
"version": "11.5",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "11.4.2",
"status": "affected",
"version": "11.4",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "11.3.4",
"status": "affected",
"version": "11.3",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "11.2.2",
"status": "affected",
"version": "11.2",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "11.1.4",
"status": "affected",
"version": "11.1",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "11.0.2",
"status": "affected",
"version": "11.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "10.9.3",
"status": "affected",
"version": "10.9",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "10.8.2",
"status": "affected",
"version": "10.8",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "10.7.2",
"status": "affected",
"version": "10.7",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "10.6.2",
"status": "affected",
"version": "10.6",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "10.5.3",
"status": "affected",
"version": "10.5",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "10.4.2",
"status": "affected",
"version": "10.4",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "10.3.2",
"status": "affected",
"version": "10.3",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "10.2.3",
"status": "affected",
"version": "10.2",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "10.1.2",
"status": "affected",
"version": "10.1",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "10.0.2",
"status": "affected",
"version": "10.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "9.9.3",
"status": "affected",
"version": "9.9",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "9.8.3",
"status": "affected",
"version": "9.8",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "9.7.3",
"status": "affected",
"version": "9.7",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "9.6.4",
"status": "affected",
"version": "9.6",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "9.5.5",
"status": "affected",
"version": "9.5",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "9.4.4",
"status": "affected",
"version": "9.4",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "9.3.5",
"status": "affected",
"version": "9.3",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "9.2.4",
"status": "affected",
"version": "9.2",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "9.1.3",
"status": "affected",
"version": "9.1",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "9.0.5",
"status": "affected",
"version": "9.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "8.9.4",
"status": "affected",
"version": "8.9",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "8.8.5",
"status": "affected",
"version": "8.8",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "8.7.4",
"status": "affected",
"version": "8.7",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "8.6.4",
"status": "affected",
"version": "8.6",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "8.5.3",
"status": "affected",
"version": "8.5",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "8.4.5",
"status": "affected",
"version": "8.4",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "8.3.3",
"status": "affected",
"version": "8.3",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "8.2.6",
"status": "affected",
"version": "8.2",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "8.1.4",
"status": "affected",
"version": "8.1",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "8.0.3",
"status": "affected",
"version": "8.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "7.9.4",
"status": "affected",
"version": "7.9",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "7.8.4",
"status": "affected",
"version": "7.8",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "7.7.6",
"status": "affected",
"version": "7.7",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "7.6.4",
"status": "affected",
"version": "7.6",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "7.5.7",
"status": "affected",
"version": "7.5",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "7.4.5",
"status": "affected",
"version": "7.4",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "7.3.5",
"status": "affected",
"version": "7.3",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "7.2.5",
"status": "affected",
"version": "7.2",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "7.1.5",
"status": "affected",
"version": "7.1",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "7.0.5",
"status": "affected",
"version": "7.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "6.9.4",
"status": "affected",
"version": "6.9",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "6.8.5",
"status": "affected",
"version": "6.8",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "6.7.4",
"status": "affected",
"version": "6.7",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "6.6.5",
"status": "affected",
"version": "6.6",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "6.5.4",
"status": "affected",
"version": "6.5",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "6.4.6",
"status": "affected",
"version": "6.4",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "6.3.7",
"status": "affected",
"version": "6.3",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "6.2.5",
"status": "affected",
"version": "6.2",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "6.1.5",
"status": "affected",
"version": "6.1",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "6.0.4",
"status": "affected",
"version": "6.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "5.9.4",
"status": "affected",
"version": "5.9",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "5.8.4",
"status": "affected",
"version": "5.8",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "5.7.5",
"status": "affected",
"version": "5.7",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "5.6.5",
"status": "affected",
"version": "5.6",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "5.5.5",
"status": "affected",
"version": "5.5",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "5.4.4",
"status": "affected",
"version": "5.4",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "5.3.4",
"status": "affected",
"version": "5.3",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "5.2.5",
"status": "affected",
"version": "5.2",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "5.1.4",
"status": "affected",
"version": "5.1",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "5.0.3",
"status": "affected",
"version": "5.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "4.9.3",
"status": "affected",
"version": "4.9",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "4.8.5",
"status": "affected",
"version": "4.8",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "4.7.4",
"status": "affected",
"version": "4.7",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "4.6.3",
"status": "affected",
"version": "4.6",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "4.5.3",
"status": "affected",
"version": "4.5",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "4.4.5",
"status": "affected",
"version": "4.4",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "4.3.5",
"status": "affected",
"version": "4.3",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "4.2.5",
"status": "affected",
"version": "4.2",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "4.1.4",
"status": "affected",
"version": "4.1.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "4.0.7",
"status": "affected",
"version": "4.0.0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Jetpack",
"vendor": "Unknown",
"versions": [
{
"lessThan": "3.9.10",
"status": "affected",
"version": "3.9.2",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"value": "Marc Montpas"
},
{
"lang": "en",
"type": "coordinator",
"value": "WPScan"
}
],
"descriptions": [
{
"lang": "en",
"value": "The Jetpack WordPress plugin does not have proper authorisation in one of its REST endpoint, allowing any authenticated users, such as subscriber to read arbitrary feedbacks data sent via the Jetpack Contact Form"
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "CWE-863 Incorrect Authorization",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-11-07T15:02:38.050Z",
"orgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81",
"shortName": "WPScan"
},
"references": [
{
"tags": [
"exploit",
"vdb-entry",
"technical-description"
],
"url": "https://wpscan.com/vulnerability/669382af-f836-4896-bdcb-5c6a57c99bd9/"
}
],
"source": {
"discovery": "EXTERNAL"
},
"title": "Jetpack \u003c 13.9.1 - Subscriber+ Arbitrary Feedback Access",
"x_generator": {
"engine": "WPScan CVE Generator"
}
}
},
"cveMetadata": {
"assignerOrgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81",
"assignerShortName": "WPScan",
"cveId": "CVE-2024-9926",
"datePublished": "2024-11-07T15:02:38.050Z",
"dateReserved": "2024-10-14T09:27:37.145Z",
"dateUpdated": "2024-11-07T19:53:07.815Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…