Security advisory: Stored XSS in Jetpack

Security Risk: Dangerous Exploitation Level: Easy/Remote DREAD Score: 8/10 Vulnerability: Stored XSS Patched Version:  3.7.1 During a routine audit for our WAF, we discovered a critical stored XSS affecting the Jetpack WordPress plugin, one of the most popular plugin of the WordPress ecosystem. Vulnerability Disclosure Timeline: September 10th, 2015 – Initial report to Automattic security team
Read More

The post Security advisory: Stored XSS in Jetpack appeared first on Sucuri Blog.

Via Sucuri.net

Tags: ,

No comments yet.

Leave a Reply