Filters

Software

automattic jetpack
6
automattic activitypub
4
automattic sensei lms
3
automattic wp super cache
2
automattic akismet
1
automattic camptix event ticketing
1
automattic crowdsignal dashboard
1
automattic genericons
1
automattic ghacitivity wordpress
1
automattic ghactivity wordpress
1
automattic newspack
1
automattic newspack ads wordpress
1
automattic woocommerce
1
automattic woocommerce blocks
1
automattic woopayments
1
automattic wordpress.com editing toolkit
1

Automattic Ghacitivity WordpressWordPress GHActivity plugin <= 2.0.0-alpha - Cross Site Scripting (XSS) vulnerability

medium
6.5
First published (updated )
CVE-2024-43949

Automattic Newspack Ads WordpressWordPress Newspack Ads plugin <= 1.47.1 - Cross Site Scripting (XSS) vulnerability

medium
6.5
First published (updated )
CVE-2024-37474

Automattic NewspackWordPress Newspack Campaigns plugin <= 2.31.1 - Cross Site Scripting (XSS) vulnerability

medium
6.5
First published (updated )
CVE-2024-37476

Automattic Sensei LmsWordPress Sensei LMS Plugin <= 4.17.0 is vulnerable to Cross Site Scripting (XSS)

medium
6.5
First published (updated )
CVE-2023-50875

CVE-2023-50879WordPress WordPress.com Editing Toolkit Plugin <= 3.78784 is vulnerable to Cross Site Scripting (XSS)

medium
6.5
First published (updated )
CVE-2023-50879

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Automattic WoopaymentsWordPress WooCommerce Payments Plugin <= 6.4.2 is vulnerable to Cross Site Scripting (XSS)

medium
6.5
First published (updated )
CVE-2023-49828

Automattic JetpackWordPress Jetpack Plugin <= 12.8-a.1 is vulnerable to Cross Site Scripting (XSS)

medium
6.5
First published (updated )
CVE-2023-45050

Automattic WoocommerceWordPress WooCommerce and WooCommerce Blocks plugins - Auth. Cross-Site Scripting (XSS) vulnerability

medium
6.5
First published (updated )
CVE-2023-47777

Automattic ActivitypubActivityPub for WordPress < 1.0.0 - Subscriber+ Arbitrary Post Title Disclosure

medium
4.3
First published (updated )
CVE-2023-3706

Automattic ActivitypubActivityPub for WordPress < 1.0.1 - Contributor+ Stored XSS

medium
5.4
First published (updated )
CVE-2023-3746

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Automattic ActivitypubActivityPub for WordPress < 1.0.0 - Contributor+ Stored XSS

medium
5.4
First published (updated )
CVE-2023-5057

Automattic ActivitypubActivityPub for WordPress < 1.0.0 - Subscriber+ Arbitrary Post Content Disclosure

medium
4.3
First published (updated )
CVE-2023-3707

CVE-2023-27429WordPress Jetpack CRM Plugin <= 5.4.4 is vulnerable to Cross Site Scripting (XSS)

medium
5.9
First published (updated )
CVE-2023-27429

CVE-2022-4497Jetpack CRM < 5.5 - Contributor+ Stored XSS

medium
5.4
First published (updated )
CVE-2022-4497

CVE-2022-3919Jetpack CRM < 5.4.3 - Admin+ Cross-Site Scripting

medium
4.8
First published (updated )
CVE-2022-3919

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Automattic Sensei LmsSensei LMS < 4.5.2 - Arbitrary Private Message Sending via IDOR

medium
4.3
First published (updated )
CVE-2022-2080

Automattic Sensei LmsSensei LMS < 4.5.0 - Unauthenticated Private Messages Disclosure via Rest API

medium
5.3
First published (updated )
CVE-2022-2034

Automattic Crowdsignal DashboardCrowdsignal Polls & Ratings < 3.0.8 - Reflected Cross-Site Scripting

medium
6.1
First published (updated )
CVE-2022-2386

Automattic JetpackJetpack < 9.8 - Carousel Module Non-Published Page/Post Attachment Comment Leak

medium
5.3
First published (updated )
CVE-2021-24374

Automattic Wp Super CacheWP Super Cache < 1.7.3 - Authenticated Stored Cross-Site Scripting (XSS)

medium
5.4
First published (updated )
CVE-2021-24329

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Automattic Wp Super CacheXSS

medium
6.1
First published (updated )
CVE-2013-2008

Automattic JetpackXSS

medium
6.1
First published (updated )
CVE-2015-9359

Automattic AkismetXSS

medium
6.1
First published (updated )
CVE-2015-9357

Automattic Camptix Event TicketingXSS

medium
4.8
First published (updated )
CVE-2016-10763

Automattic JetpackXSS

medium
6.1
First published (updated )
CVE-2016-10706

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Automattic JetpackXSS

medium
6.1
First published (updated )
CVE-2016-10705

Automattic GenericonsXSS

medium
4.3
First published (updated )
CVE-2015-3429

Automattic JetpackThe Jetpack plugin before 1.9 before 1.9.4, 2.0.x before 2.0.9, 2.1.x before 2.1.4, 2.2.x before 2.2…

medium
5.8
First published (updated )
CVE-2014-0173

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203