{ "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", "CVE_data_meta": { "ID": "CVE-2023-2996", "ASSIGNER": "contact@wpscan.com", "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", "value": "The Jetpack WordPress plugin before 12.1.1 does not validate uploaded files, allowing users with author roles or above to manipulate existing files on the site, deleting arbitrary files, and in rare cases achieve Remote Code Execution via phar deserialization." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "CWE-20 Improper Input Validation" } ] } ] }, "affects": { "vendor": { "vendor_data": [ { "vendor_name": "Unknown", "product": { "product_data": [ { "product_name": "Jetpack", "version": { "version_data": [ { "version_affected": "<", "version_name": "1.9", "version_value": "2.0.9" }, { "version_affected": "<", "version_name": "2.1", "version_value": "2.1.7" }, { "version_affected": "<", "version_name": "2.2", "version_value": "2.2.10" }, { "version_affected": "<", "version_name": "2.3", "version_value": "2.3.10" }, { "version_affected": "<", "version_name": "2.4", "version_value": "2.4.7" }, { "version_affected": "<", "version_name": "2.5", "version_value": "2.5.5" }, { "version_affected": "<", "version_name": "2.6", "version_value": "2.6.6" }, { "version_affected": "<", "version_name": "2.7", "version_value": "2.7.5" }, { "version_affected": "<", "version_name": "2.8", "version_value": "2.8.5" }, { "version_affected": "<", "version_name": "2.9", "version_value": "2.9.6" }, { "version_affected": "<", "version_name": "3.0", "version_value": "3.0.6" }, { "version_affected": "<", "version_name": "3.1", "version_value": "3.1.5" }, { "version_affected": "<", "version_name": "3.2", "version_value": "3.2.5" }, { "version_affected": "<", "version_name": "3.3", "version_value": "3.3.6" }, { "version_affected": "<", "version_name": "3.4", "version_value": "3.4.6" }, { "version_affected": "<", "version_name": "3.5", "version_value": "3.5.6" }, { "version_affected": "<", "version_name": "3.6", "version_value": "3.6.4" }, { "version_affected": "<", "version_name": "3.7", "version_value": "3.7.5" }, { "version_affected": "<", "version_name": "3.8", "version_value": "3.8.5" }, { "version_affected": "<", "version_name": "3.9", "version_value": "3.9.9" }, { "version_affected": "<", "version_name": "4.0", "version_value": "4.0.6" }, { "version_affected": "<", "version_name": "4.1", "version_value": "4.1.3" }, { "version_affected": "<", "version_name": "4.2", "version_value": "4.2.4" }, { "version_affected": "<", "version_name": "4.3", "version_value": "4.3.4" }, { "version_affected": "<", "version_name": "4.4", "version_value": "4.4.4" }, { "version_affected": "<", "version_name": "4.5", "version_value": "4.5.2" }, { "version_affected": "<", "version_name": "4.6", "version_value": "4.6.2" }, { "version_affected": "<", "version_name": "4.7", "version_value": "4.7.3" }, { "version_affected": "<", "version_name": "4.8", "version_value": "4.8.4" }, { "version_affected": "<", "version_name": "4.9", "version_value": "4.9.2" }, { "version_affected": "<", "version_name": "5.0", "version_value": "5.0.2" }, { "version_affected": "<", "version_name": "5.1", "version_value": "5.1.3" }, { "version_affected": "<", "version_name": "5.2", "version_value": "5.2.4" }, { "version_affected": "<", "version_name": "5.3", "version_value": "5.3.3" }, { "version_affected": "<", "version_name": "5.4", "version_value": "5.4.3" }, { "version_affected": "<", "version_name": "5.5", "version_value": "5.5.4" }, { "version_affected": "<", "version_name": "5.6", "version_value": "5.6.4" }, { "version_affected": "<", "version_name": "5.7", "version_value": "5.7.4" }, { "version_affected": "<", "version_name": "5.8", "version_value": "5.8.3" }, { "version_affected": "<", "version_name": "5.9", "version_value": "5.9.3" }, { "version_affected": "<", "version_name": "6.0", "version_value": "6.0.3" }, { "version_affected": "<", "version_name": "6.1", "version_value": "6.1.4" }, { "version_affected": "<", "version_name": "6.2", "version_value": "6.2.4" }, { "version_affected": "<", "version_name": "6.3", "version_value": "6.3.6" }, { "version_affected": "<", "version_name": "6.4", "version_value": "6.4.5" }, { "version_affected": "<", "version_name": "6.5", "version_value": "6.5.3" }, { "version_affected": "<", "version_name": "6.6", "version_value": "6.6.4" }, { "version_affected": "<", "version_name": "6.7", "version_value": "6.7.3" }, { "version_affected": "<", "version_name": "6.8", "version_value": "6.8.4" }, { "version_affected": "<", "version_name": "6.9", "version_value": "6.9.3" }, { "version_affected": "<", "version_name": "7.0", "version_value": "7.0.4" }, { "version_affected": "<", "version_name": "7.1", "version_value": "7.1.4" }, { "version_affected": "<", "version_name": "7.2", "version_value": "7.2.4" }, { "version_affected": "<", "version_name": "7.3", "version_value": "7.3.4" }, { "version_affected": "<", "version_name": "7.4", "version_value": "7.4.4" }, { "version_affected": "<", "version_name": "7.5", "version_value": "7.5.6" }, { "version_affected": "<", "version_name": "7.6", "version_value": "7.6.3" }, { "version_affected": "<", "version_name": "7.7", "version_value": "7.7.5" }, { "version_affected": "<", "version_name": "7.8", "version_value": "7.8.3" }, { "version_affected": "<", "version_name": "7.9", "version_value": "7.9.3" }, { "version_affected": "<", "version_name": "8.0", "version_value": "8.0.2" }, { "version_affected": "<", "version_name": "8.1", "version_value": "8.1.3" }, { "version_affected": "<", "version_name": "8.2", "version_value": "8.2.5" }, { "version_affected": "<", "version_name": "8.3", "version_value": "8.3.2" }, { "version_affected": "<", "version_name": "8.4", "version_value": "8.4.4" }, { "version_affected": "<", "version_name": "8.5", "version_value": "8.5.2" }, { "version_affected": "<", "version_name": "8.6", "version_value": "8.6.3" }, { "version_affected": "<", "version_name": "8.7", "version_value": "8.7.3" }, { "version_affected": "<", "version_name": "8.8", "version_value": "8.8.4" }, { "version_affected": "<", "version_name": "8.9", "version_value": "8.9.3" }, { "version_affected": "<", "version_name": "9.0", "version_value": "9.0.4" }, { "version_affected": "<", "version_name": "9.1", "version_value": "9.1.2" }, { "version_affected": "<", "version_name": "9.2", "version_value": "9.2.3" }, { "version_affected": "<", "version_name": "9.3", "version_value": "9.3.4" }, { "version_affected": "<", "version_name": "9.4", "version_value": "9.4.3" }, { "version_affected": "<", "version_name": "9.5", "version_value": "9.5.4" }, { "version_affected": "<", "version_name": "9.6", "version_value": "9.6.3" }, { "version_affected": "<", "version_name": "9.7", "version_value": "9.7.2" }, { "version_affected": "<", "version_name": "9.8", "version_value": "9.8.2" }, { "version_affected": "<", "version_name": "9.9", "version_value": "9.9.2" }, { "version_affected": "<", "version_name": "10.0", "version_value": "10.0.1" }, { "version_affected": "<", "version_name": "10.1", "version_value": "10.1.1" }, { "version_affected": "<", "version_name": "10.2", "version_value": "10.2.2" }, { "version_affected": "<", "version_name": "10.3", "version_value": "10.3.1" }, { "version_affected": "<", "version_name": "10.4", "version_value": "10.4.1" }, { "version_affected": "<", "version_name": "10.5", "version_value": "10.5.2" }, { "version_affected": "<", "version_name": "10.6", "version_value": "10.6.2" }, { "version_affected": "<", "version_name": "10.7", "version_value": "10.7.1" }, { "version_affected": "<", "version_name": "10.8", "version_value": "10.8.1" }, { "version_affected": "<", "version_name": "10.9", "version_value": "10.9.2" }, { "version_affected": "<", "version_name": "11.0", "version_value": "11.0.1" }, { "version_affected": "<", "version_name": "11.1", "version_value": "11.1.3" }, { "version_affected": "<", "version_name": "11.2", "version_value": "11.2.1" }, { "version_affected": "<", "version_name": "11.3", "version_value": "11.3.3" }, { "version_affected": "<", "version_name": "11.4", "version_value": "11.4.1" }, { "version_affected": "<", "version_name": "11.5", "version_value": "11.5.2" }, { "version_affected": "<", "version_name": "11.6", "version_value": "11.6.1" }, { "version_affected": "<", "version_name": "11.7", "version_value": "11.7.2" }, { "version_affected": "<", "version_name": "11.8", "version_value": "11.8.5" }, { "version_affected": "<", "version_name": "11.9", "version_value": "11.9.2" }, { "version_affected": "<", "version_name": "12.0", "version_value": "12.0.1" }, { "version_affected": "<", "version_name": "12.1", "version_value": "12.1.1" } ] } } ] } } ] } }, "references": { "reference_data": [ { "url": "https://wpscan.com/vulnerability/52d221bd-ae42-435d-a90a-60a5ae530663", "refsource": "MISC", "name": "https://wpscan.com/vulnerability/52d221bd-ae42-435d-a90a-60a5ae530663" }, { "url": "https://jetpack.com/blog/jetpack-12-1-1-critical-security-update/", "refsource": "MISC", "name": "https://jetpack.com/blog/jetpack-12-1-1-critical-security-update/" } ] }, "generator": { "engine": "WPScan CVE Generator" }, "source": { "discovery": "EXTERNAL" }, "credits": [ { "lang": "en", "value": "Miguel Neto" }, { "lang": "en", "value": "WPScan" } ] }