Vulnerabilidades em Automattic
59 resultadosCVE-2024-43968MEDIUMWordPress Newspack plugin < 3.8.7 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-37475MEDIUMWordPress Newspack Newsletters plugin <= 2.13.2 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-37477MEDIUMWordPress Newspack Content Converter plugin <= 0.1.5 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2023-47788MEDIUMWordPress Jetpack plugin < 12.7 - Contributor+ Broken Access Control vulnerabilityEPSS 0.4%CVE-2025-5062MEDIUMWooCommerce <= 9.4.2 - PostMessage-Based Cross-Site ScriptingEPSS 0.4%CVE-2023-49828MEDIUMWordPress WooCommerce Payments Plugin <= 6.4.2 is vulnerable to Cross Site Scripting (XSS)EPSS 0.4%CVE-2023-52211MEDIUMWordPress WP Job Manager plugin <= 2.0.0 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-39666MEDIUMWordPress WooCommerce plugin <= 9.1.2 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.4%CVE-2024-4392MEDIUMJetpack – WP Security, Backup, Speed, & Growth <= 13.3.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via wpvideo ShortcodeEPSS 0.4%CVE-2024-37425MEDIUMWordPress Newspack Blocks plugin <= 3.0.8 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-35777LOWWordPress WooCommerce plugin <= 8.9.2 - Content Injection vulnerabilityEPSS 0.4%CVE-2024-37443MEDIUMWordPress WP Job Manager plugin <= 2.1.0 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-69015LOWWordPress Crowdsignal Forms plugin <= 1.7.2 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2023-50879MEDIUMWordPress WordPress.com Editing Toolkit Plugin <= 3.78784 is vulnerable to Cross Site Scripting (XSS)EPSS 0.3%CVE-2024-31111MEDIUMWordPress Core < 6.5.5 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2023-50875MEDIUMWordPress Sensei LMS Plugin <= 4.17.0 is vulnerable to Cross Site Scripting (XSS)EPSS 0.3%CVE-2025-15033MEDIUMWooCommerce - Subscriber/Customer+ Order Data DisclosureEPSS 0.3%CVE-2023-52222MEDIUMWordPress WooCommerce Plugin <= 8.2.2 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.3%CVE-2024-37474MEDIUMWordPress Newspack Ads plugin <= 1.47.1 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2024-37476MEDIUMWordPress Newspack Campaigns plugin <= 2.31.1 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%