CVE-2023-47788

Name: Websites susceptible to CVE-2023-47788
Creator: WebTechSurvey

CVE-2023-47788

WordPress Jetpack plugin < 12.7 - Contributor+ Broken Access Control vulnerability

Missing Authorization vulnerability in Automattic Jetpack.This issue affects Jetpack: from n/a before 12.7.

We have discovered 250,102 live websites that are affected by CVE-2023-47788.

Affected Software


Product	Jetpack
Category	Widgets
Vulnerable Domains	250,102 live websites (24.77% of Jetpack install base)
Vulnerable Versions	from 0 before 12.7
Vulnerable Versions Count	497 versions ( 90.86% of all versions)

Common Weakness Enumeration

CWE-862 Missing Authorization

Available Reports

Website List

Details

Published - Jun 19, 2024
Updated - Aug 2, 2024

Credits

Rafie Muhammad (Patchstack) (finder)

CWE

CWE-862

CVE References

CWE References

cwe.mitre.org

CVE-2023-47788 usage by Country

United States	82,032 websites

Japan	38,573 websites
Germany	24,765 websites
France	15,650 websites
GB	9,022 websites
Italy	8,614 websites
Netherlands	6,412 websites
Spain	4,801 websites
Russia	3,881 websites

CVE-2023-47788 usage by TLD

.com	122,035 websites
.org	11,144 websites
.de	11,078 websites
.net	10,250 websites
.jp	6,857 websites
.it	6,251 websites
.co.uk	6,134 websites
.fr	6,077 websites
.nl	5,933 websites
.ru	3,341 websites

Vulnerable Versions

Vulnerable versions are highlighted in red

Websites affected by CVE-2023-47788

Top websites that are affected by CVE-2023-47788. Please click on the "Contact us" link to get more information.

Domain	Country	Rank
*********.com	United States	***
***************.eu	Netherlands	,**
*******.com	United States	,**
***********************.com	United States	,**
*************.com	United States	,**
*******.net	Turkey	,**
****.com	United States	,**
*****************.com	United States	,*
*********.com	United States	,*
***********.com	United States	,*

See full domain list

FAQ

CVE-2023-47788 is Missing Authorization in Jetpack

A total of 250,102 websites have been identified as vulnerable to CVE-2023-47788, based on global website indexing conducted by WebTechSurvey.

The Jetpack is affected by the CVE-2023-47788 vulnerability.

Jetpack versions up to 12.7 are vulnerable to CVE-2023-47788.

CVE-2023-47788 is resolved in version 12.7 of Jetpack.

References

https://patchstack.com/database/vulnerability/jetpack/wordpress-jetpack-plugin-12-7-contributor-broken-access-control-vulnerability?_s_id=cve

CVE-2023-47788

Affected Software

Common Weakness Enumeration

Available Reports

Details

Credits

CWE

CVE References

CWE References

CVE-2023-47788 usage by Country

CVE-2023-47788 usage by TLD

Vulnerable Versions

Websites affected by CVE-2023-47788

What type of vulnerability is CVE-2023-47788?

How many websites are affected by the CVE-2023-47788 vulnerability?

Which technology is affected by CVE-2023-47788?

Which versions of Jetpack are vulnerable to CVE-2023-47788?

In which version of Jetpack is the CVE-2023-47788 vulnerability resolved?

References