CVE-2023-2996

Jetpack < 12.1.1 - Author+ Arbitrary File Manipulation via API

The Jetpack WordPress plugin before 12.1.1 does not validate uploaded files, allowing users with author roles or above to manipulate existing files on the site, deleting arbitrary files, and in rare cases achieve Remote Code Execution via phar deserialization.

We have discovered 60,935 live websites that are affected by CVE-2023-2996.

Test my site



Affected Software

Product  Jetpack
Category Widgets
Vulnerable Domains60,935 live websites (5.86% of Jetpack install base)
Vulnerable Versions
  • from 1.9 before 2.0.9
  • from 2.1 before 2.1.7
  • from 2.2 before 2.2.10
  • from 2.3 before 2.3.10
  • from 2.4 before 2.4.7
  • from 2.5 before 2.5.5
  • from 2.6 before 2.6.6
  • from 2.7 before 2.7.5
  • from 2.8 before 2.8.5
  • from 2.9 before 2.9.6
  • from 3 before 3.0.6
  • from 3.1 before 3.1.5
  • from 3.2 before 3.2.5
  • from 3.3 before 3.3.6
  • from 3.4 before 3.4.6
  • from 3.5 before 3.5.6
  • from 3.6 before 3.6.4
  • from 3.7 before 3.7.5
  • from 3.8 before 3.8.5
  • from 3.9 before 3.9.9
  • from 4 before 4.0.6
  • from 4.1 before 4.1.3
  • from 4.2 before 4.2.4
  • from 4.3 before 4.3.4
  • from 4.4 before 4.4.4
  • from 4.5 before 4.5.2
  • from 4.6 before 4.6.2
  • from 4.7 before 4.7.3
  • from 4.8 before 4.8.4
  • from 4.9 before 4.9.2
  • from 5 before 5.0.2
  • from 5.1 before 5.1.3
  • from 5.2 before 5.2.4
  • from 5.3 before 5.3.3
  • from 5.4 before 5.4.3
  • from 5.5 before 5.5.4
  • from 5.6 before 5.6.4
  • from 5.7 before 5.7.4
  • from 5.8 before 5.8.3
  • from 5.9 before 5.9.3
  • from 6 before 6.0.3
  • from 6.1 before 6.1.4
  • from 6.2 before 6.2.4
  • from 6.3 before 6.3.6
  • from 6.4 before 6.4.5
  • from 6.5 before 6.5.3
  • from 6.6 before 6.6.4
  • from 6.7 before 6.7.3
  • from 6.8 before 6.8.4
  • from 6.9 before 6.9.3
  • from 7 before 7.0.4
  • from 7.1 before 7.1.4
  • from 7.2 before 7.2.4
  • from 7.3 before 7.3.4
  • from 7.4 before 7.4.4
  • from 7.5 before 7.5.6
  • from 7.6 before 7.6.3
  • from 7.7 before 7.7.5
  • from 7.8 before 7.8.3
  • from 7.9 before 7.9.3
  • from 8 before 8.0.2
  • from 8.1 before 8.1.3
  • from 8.2 before 8.2.5
  • from 8.3 before 8.3.2
  • from 8.4 before 8.4.4
  • from 8.5 before 8.5.2
  • from 8.6 before 8.6.3
  • from 8.7 before 8.7.3
  • from 8.8 before 8.8.4
  • from 8.9 before 8.9.3
  • from 9 before 9.0.4
  • from 9.1 before 9.1.2
  • from 9.2 before 9.2.3
  • from 9.3 before 9.3.4
  • from 9.4 before 9.4.3
  • from 9.5 before 9.5.4
  • from 9.6 before 9.6.3
  • from 9.7 before 9.7.2
  • from 9.8 before 9.8.2
  • from 9.9 before 9.9.2
  • from 10 before 10.0.1
  • from 10.1 before 10.1.1
  • from 10.2 before 10.2.2
  • from 10.3 before 10.3.1
  • from 10.4 before 10.4.1
  • from 10.5 before 10.5.2
  • from 10.6 before 10.6.2
  • from 10.7 before 10.7.1
  • from 10.8 before 10.8.1
  • from 10.9 before 10.9.2
  • from 11 before 11.0.1
  • from 11.1 before 11.1.3
  • from 11.2 before 11.2.1
  • from 11.3 before 11.3.3
  • from 11.4 before 11.4.1
  • from 11.5 before 11.5.2
  • from 11.6 before 11.6.1
  • from 11.7 before 11.7.2
  • from 11.8 before 11.8.5
  • from 11.9 before 11.9.2
  • from 12 before 12.0.1
  • from 12.1 before 12.1.1
Vulnerable Versions Count349 versions ( 53.69% of all versions)


Common Weakness Enumeration

CWE-20 Improper Input Validation



Details

  • Published - Jun 27, 2023
  • Updated - Dec 5, 2024

Credits

  • Miguel Neto (finder)
  • WPScan (coordinator)

CVE-2023-2996 usage by Country

United States25,926 websites


Germany5,258 websites
Japan4,763 websites
GB2,639 websites
France2,447 websites
Netherlands2,413 websites
Spain1,457 websites
Canada1,146 websites
Poland1,086 websites
Australia993 websites

CVE-2023-2996 usage by TLD

.com29,961 websites
.org3,370 websites
.net2,372 websites
.de2,113 websites
.nl1,999 websites
.co.uk1,825 websites
.jp1,140 websites
.pl918 websites
.com.au888 websites
.it839 websites

Vulnerable Versions

Vulnerable versions are highlighted in red

Websites affected by CVE-2023-2996

Top websites that are affected by CVE-2023-2996. Please click on the "Contact us" link to get more information.
DomainCountryRankContacts
*********.com United States***
*********.com United States*,***
*******.net Turkey*,***
*****************.com United States**,***
*********.com United States**,***
********.tv United States**,***
*******************.ro Romania**,***
**********.com Turkey**,***
***.se Sweden**,***
******.jp United States**,***
See full domain list

FAQ

CVE-2023-2996 is Improper Input Validation in Jetpack
A total of 60,935 websites have been identified as vulnerable to CVE-2023-2996, discovered through global website indexing conducted by WebTechSurvey.
Jetpack is susceptible to CVE-2023-2996 vulnerability.
Jetpack versions before 12.1.1 are vulnerable to CVE-2023-2996.
Version 12.1.1 of Jetpack addresses the CVE-2023-2996 security vulnerability.