CVE-2024-10075 | Jetpack Plugin up to 13.7 on WordPress Shortcode authorization

Inserito da Angelo Barbosa | Mag 16, 2025 | CVE

A vulnerability, which was classified as critical, has been found in Jetpack Plugin up to 13.7 on WordPress. Affected by this issue is some unknown functionality of the component Shortcode Handler. The manipulation leads to authorization bypass.

This vulnerability is handled as CVE-2024-10075. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-10075 | Jetpack Plugin up to 13.7 on WordPress Shortcode authorization

Post correlati

CVE-2024-0390 | INPRAX iZZi connect up to 20240103 on Android read hard-coded credentials

CVE-2024-23646 | Pimcore admin-ui-classic-bundle up to 1.3.1 ZIP File selectedIds sql injection

CVE-2024-30635 | Tenda F1202 1.2.0.20(408) /goform/setcfm formSetCfm funcpara1 stack-based overflow

CVE-2024-6083 | PHPVibe 11.0.46 Media Upload Page upload-mp3.php file unrestricted upload