๐ XSS in the SSO module
๐ก Newskategorie: Sicherheitslรผcken
๐ Quelle: portal.patchman.co
Some variables in the SSO module are not properly escaped to prevent an XSS attack.
This vulnerability affects the following application versions:
- Jetpack 10.0
- Jetpack 10.0-beta
- Jetpack 10.1
- Jetpack 10.1-beta
- Jetpack 10.2
- Jetpack 10.2.1
- Jetpack 10.2-beta
- Jetpack 10.3
- Jetpack 10.3-2110.1
- Jetpack 10.3-a.1
- Jetpack 10.3-a.3
- Jetpack 10.3-beta
- Jetpack 10.4
- Jetpack 10.4-a.1
- Jetpack 10.4-a.3
- Jetpack 10.4-a.5
- Jetpack 10.4-a.7
- Jetpack 10.4-a.9
- Jetpack 10.4-beta
- Jetpack 10.5
- Jetpack 10.5.1
- Jetpack 10.5-a.1
- Jetpack 10.5-a.3
- Jetpack 10.5-beta
- Jetpack 10.6
- Jetpack 10.6.1
- Jetpack 10.6-a.1
- Jetpack 10.6-a.3
- Jetpack 10.6-beta
- Jetpack 10.7
- Jetpack 10.7-a.1
- Jetpack 10.7-a.3
- Jetpack 10.7-a.5
- Jetpack 10.7-beta
- Jetpack 10.7-beta2
- Jetpack 10.7+vip.1
- Jetpack 10.8
- Jetpack 10.8-a.1
- Jetpack 10.8-a.3
- Jetpack 10.8-a.5
- Jetpack 10.8-a.7
- Jetpack 10.8-a.9
- Jetpack 10.8-a.9.2
- Jetpack 10.8-beta
- Jetpack 10.8-beta2
- Jetpack 10.9
- Jetpack 10.9.1
- Jetpack 10.9-a.1
- Jetpack 10.9-a.3
- Jetpack 10.9-a.5
- Jetpack 10.9-a.7
- Jetpack 10.9-beta
- Jetpack 10.9-beta2
- Jetpack 4.1.0
- Jetpack 4.1.1
- Jetpack 4.1.2
- Jetpack 4.2
- Jetpack 4.2.0
- Jetpack 4.2.1
- Jetpack 4.2.2
- Jetpack 4.2.3
- Jetpack 4.3
- Jetpack 4.3.0
- Jetpack 4.3.1
- Jetpack 4.3.2
- Jetpack 4.3.3
- Jetpack 4.4
- Jetpack 4.4.1
- Jetpack 4.4.2
- Jetpack 4.4.3
- Jetpack 4.5
- Jetpack 4.5.1
- Jetpack 4.6
- Jetpack 4.6.1
- Jetpack 4.7
- Jetpack 4.7.1
- Jetpack 4.7.2
- Jetpack 4.8
- Jetpack 4.8.1
- Jetpack 4.8.2
- Jetpack 4.8.3
- Jetpack 4.9
- Jetpack 4.9.1
- Jetpack 4.9-pressable
- Jetpack 5.0
- Jetpack 5.0.1
- Jetpack 5.1
- Jetpack 5.1.1
- Jetpack 5.1.2
- Jetpack 5.2
- Jetpack 5.2.1
- Jetpack 5.2.2
- Jetpack 5.2.3
- Jetpack 5.3
- Jetpack 5.3.1
- Jetpack 5.3.2
- Jetpack 5.4
- Jetpack 5.4.1
- Jetpack 5.4.2
- Jetpack 5.5
- Jetpack 5.5.1
- Jetpack 5.5.2
- Jetpack 5.5.3
- Jetpack 5.5-pressable
- Jetpack 5.6
- Jetpack 5.6.1
- Jetpack 5.6.2
- Jetpack 5.6.3
- Jetpack 5.6-pressable-rewind
- Jetpack 5.7
- Jetpack 5.7.1
- Jetpack 5.7.2
- Jetpack 5.7.3
- Jetpack 5.8
- Jetpack 5.8.1
- Jetpack 5.8.2
- Jetpack 5.9
- Jetpack 5.9.1
- Jetpack 5.9.2
- Jetpack 6.0
- Jetpack 6.0.1
- Jetpack 6.0.2
- Jetpack 6.1
- Jetpack 6.1.1
- Jetpack 6.1.2
- Jetpack 6.1.3
- Jetpack 6.2
- Jetpack 6.2.1
- Jetpack 6.2.2
- Jetpack 6.2.3
- Jetpack 6.3
- Jetpack 6.3.1
- Jetpack 6.3.2
- Jetpack 6.3.3
- Jetpack 6.3.4
- Jetpack 6.3.5
- Jetpack 6.4
- Jetpack 6.4.1
- Jetpack 6.4.2
- Jetpack 6.4.3
- Jetpack 6.4.4
- Jetpack 6.5
- Jetpack 6.5.1
- Jetpack 6.5.2
- Jetpack 6.5-pressable
- Jetpack 6.5-pressable2
- Jetpack 6.5-pressable3
- Jetpack 6.6
- Jetpack 6.6.1
- Jetpack 6.6.1-pressable
- Jetpack 6.6.2
- Jetpack 6.6.3
- Jetpack 6.6-beta
- Jetpack 6.6-beta2
- Jetpack 6.7
- Jetpack 6.7.1
- Jetpack 6.7.1-beta
- Jetpack 6.7.2
- Jetpack 6.7-beta
- Jetpack 6.7-beta2
- Jetpack 6.8
- Jetpack 6.8.1
- Jetpack 6.8.2
- Jetpack 6.8.3
- Jetpack 6.8-beta
- Jetpack 6.8-beta2
- Jetpack 6.8-beta3
- Jetpack 6.8-beta4
- Jetpack 6.8-pressable
- Jetpack 6.9
- Jetpack 6.9.1
- Jetpack 6.9.2
- Jetpack 6.9-beta
- Jetpack 6.9-beta2
- Jetpack 7.0
- Jetpack 7.0.1
- Jetpack 7.0.2
- Jetpack 7.0.3
- Jetpack 7.0-beta
- Jetpack 7.0-beta2
- Jetpack 7.1
- Jetpack 7.1.1
- Jetpack 7.1.1.1
- Jetpack 7.1.2
- Jetpack 7.1.3
- Jetpack 7.1-beta
- Jetpack 7.1-beta2
- Jetpack 7.2
- Jetpack 7.2.1
- Jetpack 7.2.1.1
- Jetpack 7.2.2
- Jetpack 7.2.3
- Jetpack 7.2-beta1
- Jetpack 7.2-beta2
- Jetpack 7.2-beta3
- Jetpack 7.3
- Jetpack 7.3.0
- Jetpack 7.3.0.1
- Jetpack 7.3.1
- Jetpack 7.3.1.1
- Jetpack 7.3.2
- Jetpack 7.3.3
- Jetpack 7.3-beta1
- Jetpack 7.3-beta2
- Jetpack 7.4
- Jetpack 7.4.1
- Jetpack 7.4.2
- Jetpack 7.4.3
- Jetpack 7.4-beta
- Jetpack 7.5
- Jetpack 7.5.0.1
- Jetpack 7.5.0.1-beta2
- Jetpack 7.5.1
- Jetpack 7.5.1-beta
- Jetpack 7.5.2
- Jetpack 7.5.3
- Jetpack 7.5.3-beta
- Jetpack 7.5.4
- Jetpack 7.5.5
- Jetpack 7.5-beta
- Jetpack 7.5-beta-2
- Jetpack 7.5-beta-3
- Jetpack 7.5-beta-4
- Jetpack 7.5-beta-5
- Jetpack 7.5-beta-6
- Jetpack 7.5-beta-7
- Jetpack 7.6
- Jetpack 7.6.1
- Jetpack 7.6.2
- Jetpack 7.6-beta
- Jetpack 7.7
- Jetpack 7.7.1
- Jetpack 7.7.2
- Jetpack 7.7.3
- Jetpack 7.7.4
- Jetpack 7.7-beta
- Jetpack 7.7-beta2
- Jetpack 7.8
- Jetpack 7.8.1
- Jetpack 7.8.2
- Jetpack 7.8-beta
- Jetpack 7.9
- Jetpack 7.9.1
- Jetpack 7.9.2
- Jetpack 7.9-beta
- Jetpack 7.9-beta2
- Jetpack 7.9-beta3
- Jetpack 8.0
- Jetpack 8.0.1
- Jetpack 8.0-beta
- Jetpack 8.1
- Jetpack 8.1.1
- Jetpack 8.1.2
- Jetpack 8.1-beta
- Jetpack 8.2
- Jetpack 8.2.0.1
- Jetpack 8.2.1
- Jetpack 8.2.2
- Jetpack 8.2.3
- Jetpack 8.2.4
- Jetpack 8.2-alpha
- Jetpack 8.2-beta2
- Jetpack 8.3
- Jetpack 8.3.1
- Jetpack 8.3-beta1
- Jetpack 8.3-beta2
- Jetpack 8.4
- Jetpack 8.4.1
- Jetpack 8.4.2
- Jetpack 8.4.3
- Jetpack 8.4-beta
- Jetpack 8.5
- Jetpack 8.5.1
- Jetpack 8.5-beta
- Jetpack 8.6
- Jetpack 8.6.1
- Jetpack 8.6.2
- Jetpack 8.6-beta
- Jetpack 8.6-beta2
- Jetpack 8.7
- Jetpack 8.7.0.1
- Jetpack 8.7.1
- Jetpack 8.7.2
- Jetpack 8.7-beta
- Jetpack 8.8
- Jetpack 8.8.1
- Jetpack 8.8.2
- Jetpack 8.8.3
- Jetpack 8.8-alpha
- Jetpack 8.8-beta
- Jetpack 8.8-beta2
- Jetpack 8.9
- Jetpack 8.9.1
- Jetpack 8.9.2
- Jetpack 8.9-beta
- Jetpack 8.9-beta2
- Jetpack 9.0
- Jetpack 9.0.1
- Jetpack 9.0.2
- Jetpack 9.0.2.1
- Jetpack 9.0.3
- Jetpack 9.0-beta
- Jetpack 9.1
- Jetpack 9.1.1
- Jetpack 9.2
- Jetpack 9.2.1
- Jetpack 9.2.2
- Jetpack 9.2-beta2
- Jetpack 9.3
- Jetpack 9.3.1
- Jetpack 9.3.2
- Jetpack 9.3.2-repo-moved
- Jetpack 9.3.3
- Jetpack 9.3-beta
- Jetpack 9.4
- Jetpack 9.4.1
- Jetpack 9.4.2
- Jetpack 9.4-beta
- Jetpack 9.5
- Jetpack 9.5.1
- Jetpack 9.5.2
- Jetpack 9.5.3
- Jetpack 9.5-beta
- Jetpack 9.6
- Jetpack 9.6.1
- Jetpack 9.6.2
- Jetpack 9.6-beta
- Jetpack 9.7
- Jetpack 9.7.1
- Jetpack 9.7-beta
- Jetpack 9.7-beta2
- Jetpack 9.8
- Jetpack 9.8.1
- Jetpack 9.8-beta
- Jetpack 9.9
- Jetpack 9.9.1
- Jetpack 9.9-beta
- Jetpack pr-update-to