← Back

Automattic

automattic

74 CVEs • 30 products

Products (30)

Click to collapse
Toggle
Jetpack
jetpack
16 CVEs
Wp Super Cache
wp_super_cache
6 CVEs
Sensei Lms
sensei_lms
6 CVEs
Woopayments
woopayments
5 CVEs
Activitypub
activitypub
5 CVEs
Crowdsignal Dashboard
crowdsignal_dashboard
4 CVEs
Jetpack Crm
jetpack_crm
4 CVEs
Woocommerce
woocommerce
3 CVEs
Mailpoet
mailpoet
3 CVEs
Camptix Event Ticketing
camptix_event_ticketing
2 CVEs
Woocommerce Blocks
woocommerce_blocks
2 CVEs
Vaultpress
vaultpress
2 CVEs
Woocommerce Bookings
woocommerce_bookings
2 CVEs
Jetpack Boost
jetpack_boost
2 CVEs
Genericons
genericons
1 CVE
Akismet
akismet
1 CVE
W3 Super Cache
w3_super_cache
1 CVE
Canvas
canvas
1 CVE
Woocommerce Payments
woocommerce_payments
1 CVE
Canada Post Shipping Method
canada_post_shipping_method
1 CVE
Woocommerce Gocardless
woocommerce_gocardless
1 CVE
Woocommerce Square
woocommerce_square
1 CVE
Woocommerce Subscriptions
woocommerce_subscriptions
1 CVE
Wordpress.com Editing Toolkit
wordpress.com_editing_toolkit
1 CVE
Woocommerce Stripe
woocommerce_stripe
1 CVE
Newspack Popups
newspack_popups
1 CVE
Newspack Ads
newspack_ads
1 CVE
Ghacitivity
ghacitivity
1 CVE
Ghactivity
ghactivity
1 CVE
Newspack
newspack
1 CVE

CVEs (74)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2023-3707
1Automattic
1Activitypub
Apr 23, 2025
Oct 16, 2023
N/A· v4
4.3 MEDIUM· v3
N/A· v2
The ActivityPub WordPress plugin before 1.0.0 does not ensure that post contents to be displayed are public and belong to the plugin, allowing any authenticated user, such as subscriber to retrieve the content of arbitra...Show more
The ActivityPub WordPress plugin before 1.0.0 does not ensure that post contents to be displayed are public and belong to the plugin, allowing any authenticated user, such as subscriber to retrieve the content of arbitrary post (such as draft and private) via an IDOR vector. Password protected posts are not affected by this issue.Show less
CVE-2023-3706
1Automattic
1Activitypub
Apr 23, 2025
Oct 16, 2023
N/A· v4
4.3 MEDIUM· v3
N/A· v2
The ActivityPub WordPress plugin before 1.0.0 does not ensure that post titles to be displayed are public and belong to the plugin, allowing any authenticated user, such as subscriber to retrieve the title of arbitrary p...Show more
The ActivityPub WordPress plugin before 1.0.0 does not ensure that post titles to be displayed are public and belong to the plugin, allowing any authenticated user, such as subscriber to retrieve the title of arbitrary post (such as draft and private) via an IDOR vectorShow less
CVE-2023-2996
1Automattic
1Jetpack
Nov 21, 2024
Jun 27, 2023
N/A· v4
8.8 HIGH· v3
N/A· v2
The Jetpack WordPress plugin before 12.1.1 does not validate uploaded files, allowing users with author roles or above to manipulate existing files on the site, deleting arbitrary files, and in rare cases achieve Remote...Show more
The Jetpack WordPress plugin before 12.1.1 does not validate uploaded files, allowing users with author roles or above to manipulate existing files on the site, deleting arbitrary files, and in rare cases achieve Remote Code Execution via phar deserialization.Show less
CVE-2023-27429
1Automattic
1Jetpack Crm
Nov 21, 2024
Jun 21, 2023
N/A· v4
4.8 MEDIUM· v3
N/A· v2
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Automattic - Jetpack CRM team Jetpack CRM plugin <= 5.4.4 versions.
CVE-2014-125104
1Automattic
1Vaultpress
Nov 21, 2024
Jun 1, 2023
N/A· v4
9.8 CRITICAL· v3
6.5 MEDIUM· v2
A vulnerability was found in VaultPress Plugin up to 1.6.0 on WordPress. It has been declared as critical. Affected by this vulnerability is the function protect_aioseo_ajax of the file class.vaultpress-hotfixes.php of t...Show more
A vulnerability was found in VaultPress Plugin up to 1.6.0 on WordPress. It has been declared as critical. Affected by this vulnerability is the function protect_aioseo_ajax of the file class.vaultpress-hotfixes.php of the component MailPoet Plugin. The manipulation leads to unrestricted upload. The attack can be launched remotely. Upgrading to version 1.6.1 is able to address this issue. The patch is named e3b92b14edca6291c5f998d54c90cbe98a1fb0e3. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-230263.Show less
CVE-2023-28121
1Automattic
2Woocommerce Payments
Woopayments
Nov 21, 2024
Apr 12, 2023
N/A· v4
9.8 CRITICAL· v3
N/A· v2
An issue in WooCommerce Payments plugin for WordPress (versions 5.6.1 and lower) allows an unauthenticated attacker to send requests on behalf of an elevated user, like administrator. This allows a remote, unauthenticate...Show more
An issue in WooCommerce Payments plugin for WordPress (versions 5.6.1 and lower) allows an unauthenticated attacker to send requests on behalf of an elevated user, like administrator. This allows a remote, unauthenticated attacker to gain admin access on a site that has the affected version of the plugin activated.Show less
CVE-2022-4497
1Automattic
1Jetpack Crm
Apr 9, 2025
Jan 9, 2023
N/A· v4
5.4 MEDIUM· v3
N/A· v2
The Jetpack CRM WordPress plugin before 5.5 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stor...Show more
The Jetpack CRM WordPress plugin before 5.5 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privilege users such as adminsShow less
CVE-2022-3919
1Automattic
1Jetpack Crm
Apr 22, 2025
Dec 12, 2022
N/A· v4
4.8 MEDIUM· v3
N/A· v2
The Jetpack CRM WordPress plugin before 5.4.3 does not sanitise and escape its settings, allowing high privilege users such as admin to perform cross-Site Scripting attacks even when the unfiltered_html capability is dis...Show more
The Jetpack CRM WordPress plugin before 5.4.3 does not sanitise and escape its settings, allowing high privilege users such as admin to perform cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.Show less
CVE-2022-45069
1Automattic
1Crowdsignal Dashboard
Nov 21, 2024
Nov 17, 2022
N/A· v4
8.8 HIGH· v3
N/A· v2
Auth. (contributor+) Privilege Escalation vulnerability in Crowdsignal Dashboard plugin <= 3.0.9 on WordPress.
CVE-2022-2080
1Automattic
1Sensei Lms
Nov 21, 2024
Aug 29, 2022
N/A· v4
4.3 MEDIUM· v3
N/A· v2
The Sensei LMS WordPress plugin before 4.5.2 does not ensure that the sender of a private message is either the teacher or the original sender, allowing any authenticated user to send messages to arbitrary private conver...Show more
The Sensei LMS WordPress plugin before 4.5.2 does not ensure that the sender of a private message is either the teacher or the original sender, allowing any authenticated user to send messages to arbitrary private conversation via a IDOR attack. Note: Attackers are not able to see responses/messages between the teacher and studentShow less
CVE-2022-2034
1Automattic
1Sensei Lms
Nov 21, 2024
Aug 29, 2022
N/A· v4
5.3 MEDIUM· v3
N/A· v2
The Sensei LMS WordPress plugin before 4.5.0 does not have proper permissions set in one of its REST endpoint, allowing unauthenticated users to access private messages sent to teachers
CVE-2022-2386
1Automattic
1Crowdsignal Dashboard
Nov 21, 2024
Aug 8, 2022
N/A· v4
6.1 MEDIUM· v3
N/A· v2
The Crowdsignal Dashboard WordPress plugin before 3.0.8 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting
CVE-2017-20086
1Automattic
1Vaultpress
Nov 21, 2024
Jun 23, 2022
N/A· v4
7.5 HIGH· v3
6.0 MEDIUM· v2
A vulnerability, which was classified as critical, was found in VaultPress Plugin 1.8.4. This affects an unknown part. The manipulation leads to code injection. It is possible to initiate the attack remotely.
CVE-2021-32789
1Automattic
1Woocommerce Blocks
Nov 21, 2024
Jul 26, 2021
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
woocommerce-gutenberg-products-block is a feature plugin for WooCommerce Gutenberg Blocks. An SQL injection vulnerability impacts all WooCommerce sites running the WooCommerce Blocks feature plugin between version 2.5.0...Show more
woocommerce-gutenberg-products-block is a feature plugin for WooCommerce Gutenberg Blocks. An SQL injection vulnerability impacts all WooCommerce sites running the WooCommerce Blocks feature plugin between version 2.5.0 and prior to version 2.5.16. Via a carefully crafted URL, an exploit can be executed against the `wc/store/products/collection-data?calculate_attribute_counts[][taxonomy]` endpoint that allows the execution of a read only sql query. There are patches for many versions of this package, starting with version 2.5.16. There are no known workarounds aside from upgrading.Show less
CVE-2021-24374
1Automattic
1Jetpack
Nov 21, 2024
Jun 21, 2021
N/A· v4
5.3 MEDIUM· v3
5.0 MEDIUM· v2
The Jetpack Carousel module of the JetPack WordPress plugin before 9.8 allows users to create a "carousel" type image gallery and allows users to comment on the images. A security vulnerability was found within the Jetpa...Show more
The Jetpack Carousel module of the JetPack WordPress plugin before 9.8 allows users to create a "carousel" type image gallery and allows users to comment on the images. A security vulnerability was found within the Jetpack Carousel module by nguyenhg_vcs that allowed the comments of non-published page/posts to be leaked.Show less
CVE-2021-24329
1Automattic
1Wp Super Cache
Nov 21, 2024
Jun 1, 2021
N/A· v4
5.4 MEDIUM· v3
3.5 LOW· v2
The WP Super Cache WordPress plugin before 1.7.3 did not properly sanitise its wp_cache_location parameter in its settings, which could lead to a Stored Cross-Site Scripting issue.
CVE-2021-24312
1Automattic
1Wp Super Cache
Nov 21, 2024
Jun 1, 2021
N/A· v4
7.2 HIGH· v3
6.5 MEDIUM· v2
The parameters $cache_path, $wp_cache_debug_ip, $wp_super_cache_front_page_text, $cache_scheduled_time, $cached_direct_pages used in the settings of WP Super Cache WordPress plugin before 1.7.3 result in RCE because they...Show more
The parameters $cache_path, $wp_cache_debug_ip, $wp_super_cache_front_page_text, $cache_scheduled_time, $cached_direct_pages used in the settings of WP Super Cache WordPress plugin before 1.7.3 result in RCE because they allow input of '$' and '\n'. This is due to an incomplete fix of CVE-2021-24209.Show less
CVE-2021-24209
1Automattic
1Wp Super Cache
Nov 21, 2024
Apr 5, 2021
N/A· v4
7.2 HIGH· v3
9.0 HIGH· v2
The WP Super Cache WordPress plugin before 1.7.2 was affected by an authenticated (admin+) RCE in the settings page due to input validation failure and weak $cache_path check in the WP Super Cache Settings -> Cache Locat...Show more
The WP Super Cache WordPress plugin before 1.7.2 was affected by an authenticated (admin+) RCE in the settings page due to input validation failure and weak $cache_path check in the WP Super Cache Settings -> Cache Location option. Direct access to the wp-cache-config.php file is not prohibited, so this vulnerability can be exploited for a web shell injection.Show less
CVE-2020-8215
1Automattic
1Canvas
Nov 21, 2024
Jul 20, 2020
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
A buffer overflow is present in canvas version <= 1.6.9, which could lead to a Denial of Service or execution of arbitrary code when it processes a user-provided image.
CVE-2019-11843
1Automattic
1Mailpoet
May 28, 2025
Jun 2, 2020
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
The MailPoet plugin before 3.23.2 for WordPress allows remote attackers to inject arbitrary web script or HTML using extra parameters in the URL (Reflective Server-Side XSS).