CVE-2023-2996


Jetpack < 12.1.1 - Author+ Arbitrary File Manipulation via API

The Jetpack WordPress plugin before 12.1.1 does not validate uploaded files, allowing users with author roles or above to manipulate existing files on the site, deleting arbitrary files, and in rare cases achieve Remote Code Execution via phar deserialization.


We have discovered 88,561 live websites that are affected by CVE-2023-2996.

Contact us to get more info



Affected Software

Product  Jetpack
Category Widgets
Vulnerable Versions
  • from 1.9 before 2.0.9
  • from 2.1 before 2.1.7
  • from 2.2 before 2.2.10
  • from 2.3 before 2.3.10
  • from 2.4 before 2.4.7
  • from 2.5 before 2.5.5
  • from 2.6 before 2.6.6
  • from 2.7 before 2.7.5
  • from 2.8 before 2.8.5
  • from 2.9 before 2.9.6
  • from 3 before 3.0.6
  • from 3.1 before 3.1.5
  • from 3.2 before 3.2.5
  • from 3.3 before 3.3.6
  • from 3.4 before 3.4.6
  • from 3.5 before 3.5.6
  • from 3.6 before 3.6.4
  • from 3.7 before 3.7.5
  • from 3.8 before 3.8.5
  • from 3.9 before 3.9.9
  • from 4 before 4.0.6
  • from 4.1 before 4.1.3
  • from 4.2 before 4.2.4
  • from 4.3 before 4.3.4
  • from 4.4 before 4.4.4
  • from 4.5 before 4.5.2
  • from 4.6 before 4.6.2
  • from 4.7 before 4.7.3
  • from 4.8 before 4.8.4
  • from 4.9 before 4.9.2
  • from 5 before 5.0.2
  • from 5.1 before 5.1.3
  • from 5.2 before 5.2.4
  • from 5.3 before 5.3.3
  • from 5.4 before 5.4.3
  • from 5.5 before 5.5.4
  • from 5.6 before 5.6.4
  • from 5.7 before 5.7.4
  • from 5.8 before 5.8.3
  • from 5.9 before 5.9.3
  • from 6 before 6.0.3
  • from 6.1 before 6.1.4
  • from 6.2 before 6.2.4
  • from 6.3 before 6.3.6
  • from 6.4 before 6.4.5
  • from 6.5 before 6.5.3
  • from 6.6 before 6.6.4
  • from 6.7 before 6.7.3
  • from 6.8 before 6.8.4
  • from 6.9 before 6.9.3
  • from 7 before 7.0.4
  • from 7.1 before 7.1.4
  • from 7.2 before 7.2.4
  • from 7.3 before 7.3.4
  • from 7.4 before 7.4.4
  • from 7.5 before 7.5.6
  • from 7.6 before 7.6.3
  • from 7.7 before 7.7.5
  • from 7.8 before 7.8.3
  • from 7.9 before 7.9.3
  • from 8 before 8.0.2
  • from 8.1 before 8.1.3
  • from 8.2 before 8.2.5
  • from 8.3 before 8.3.2
  • from 8.4 before 8.4.4
  • from 8.5 before 8.5.2
  • from 8.6 before 8.6.3
  • from 8.7 before 8.7.3
  • from 8.8 before 8.8.4
  • from 8.9 before 8.9.3
  • from 9 before 9.0.4
  • from 9.1 before 9.1.2
  • from 9.2 before 9.2.3
  • from 9.3 before 9.3.4
  • from 9.4 before 9.4.3
  • from 9.5 before 9.5.4
  • from 9.6 before 9.6.3
  • from 9.7 before 9.7.2
  • from 9.8 before 9.8.2
  • from 9.9 before 9.9.2
  • from 10 before 10.0.1
  • from 10.1 before 10.1.1
  • from 10.2 before 10.2.2
  • from 10.3 before 10.3.1
  • from 10.4 before 10.4.1
  • from 10.5 before 10.5.2
  • from 10.6 before 10.6.2
  • from 10.7 before 10.7.1
  • from 10.8 before 10.8.1
  • from 10.9 before 10.9.2
  • from 11 before 11.0.1
  • from 11.1 before 11.1.3
  • from 11.2 before 11.2.1
  • from 11.3 before 11.3.3
  • from 11.4 before 11.4.1
  • from 11.5 before 11.5.2
  • from 11.6 before 11.6.1
  • from 11.7 before 11.7.2
  • from 11.8 before 11.8.5
  • from 11.9 before 11.9.2
  • from 12 before 12.0.1
  • from 12.1 before 12.1.1
Total Vulnerable Versions548
Vulnerable Domains88,561 live websites (10.90% of Jetpack install base)


Common Weakness Enumeration


CWE-20 Improper Input Validation



Details

  • Published - Jun 27, 2023
  • Updated - Jun 27, 2023

Credits

  • Miguel Neto (finder)
  • WPScan (coordinator)





Countries

United States29,944 websites


Japan6,031 websites
Germany5,759 websites
GB5,308 websites
Netherlands3,943 websites
France3,396 websites
Spain2,667 websites
Italy2,652 websites
Canada2,580 websites
Australia1,975 websites

TLDs

.com42,764 websites
.org4,667 websites
.nl3,060 websites
.net3,054 websites
.co.uk2,871 websites
.de2,799 websites
.it1,779 websites
.jp1,377 websites
.com.au1,321 websites
.pl1,247 websites

Vulnerable Versions

Vulnerable versions are highlighted in red


References


Websites affected by CVE-2023-2996

Top websites that are affected by CVE-2023-2996. Please click on the "Contact us" link to get more information.
DomainCountryRankContacts
***.*********.com Germany***
******.*******.org United States***
**********.com United States*,***
*******.net Turkey*,***
***.*******.net Turkey*,***
*****************.com United States*,***
*******.net United States*,***
*****************.com United States**,***
*********.com Netherlands**,***
***.********.tv United States**,***
See full domain list