CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-0173

The Jetpack plugin before 1.9 before 1.9.4, 2.0.x before 2.0.9, 2.1.x before 2.1.4, 2.2.x before 2.2.7, 2.3.x before 2.3.7, 2.4.x before 2.4.4, 2.5.x before 2.5.2, 2.6.x before 2.6.3, 2.7.x before 2.7.2, 2.8.x before 2.8.2, and 2.9.x before 2.9.3 for WordPress does not properly restrict access to the XML-RPC service, which allows remote attackers to bypass intended restrictions and publish posts via unspecified vectors. NOTE: some of these details are obtained from third party information.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 70.3%

CVSS Severity

CVSS v2 Score 5.8

References

Products affected by CVE-2014-0173

Automattic » Jetpack » Version: 1.9

cpe:2.3:a:automattic:jetpack:1.9
Automattic » Jetpack » Version: 1.9.1

cpe:2.3:a:automattic:jetpack:1.9.1
Automattic » Jetpack » Version: 1.9.2

cpe:2.3:a:automattic:jetpack:1.9.2
Automattic » Jetpack » Version: 2.0

cpe:2.3:a:automattic:jetpack:2.0
Automattic » Jetpack » Version: 2.0.1

cpe:2.3:a:automattic:jetpack:2.0.1
Automattic » Jetpack » Version: 2.0.2

cpe:2.3:a:automattic:jetpack:2.0.2
Automattic » Jetpack » Version: 2.0.3

cpe:2.3:a:automattic:jetpack:2.0.3
Automattic » Jetpack » Version: 2.0.4

cpe:2.3:a:automattic:jetpack:2.0.4
Automattic » Jetpack » Version: 2.1

cpe:2.3:a:automattic:jetpack:2.1
Automattic » Jetpack » Version: 2.1.1

cpe:2.3:a:automattic:jetpack:2.1.1
Automattic » Jetpack » Version: 2.1.2

cpe:2.3:a:automattic:jetpack:2.1.2
Automattic » Jetpack » Version: 2.2

cpe:2.3:a:automattic:jetpack:2.2
Automattic » Jetpack » Version: 2.2.1

cpe:2.3:a:automattic:jetpack:2.2.1
Automattic » Jetpack » Version: 2.2.2

cpe:2.3:a:automattic:jetpack:2.2.2
Automattic » Jetpack » Version: 2.2.3

cpe:2.3:a:automattic:jetpack:2.2.3
Automattic » Jetpack » Version: 2.2.4

cpe:2.3:a:automattic:jetpack:2.2.4
Automattic » Jetpack » Version: 2.2.5

cpe:2.3:a:automattic:jetpack:2.2.5
Automattic » Jetpack » Version: 2.3

cpe:2.3:a:automattic:jetpack:2.3
Automattic » Jetpack » Version: 2.3.1

cpe:2.3:a:automattic:jetpack:2.3.1
Automattic » Jetpack » Version: 2.3.2

cpe:2.3:a:automattic:jetpack:2.3.2
Automattic » Jetpack » Version: 2.3.3

cpe:2.3:a:automattic:jetpack:2.3.3
Automattic » Jetpack » Version: 2.3.4

cpe:2.3:a:automattic:jetpack:2.3.4
Automattic » Jetpack » Version: 2.3.5

cpe:2.3:a:automattic:jetpack:2.3.5
Automattic » Jetpack » Version: 2.4

cpe:2.3:a:automattic:jetpack:2.4
Automattic » Jetpack » Version: 2.4.1

cpe:2.3:a:automattic:jetpack:2.4.1
Automattic » Jetpack » Version: 2.4.2

cpe:2.3:a:automattic:jetpack:2.4.2
Automattic » Jetpack » Version: 2.5

cpe:2.3:a:automattic:jetpack:2.5
Automattic » Jetpack » Version: 2.6

cpe:2.3:a:automattic:jetpack:2.6
Automattic » Jetpack » Version: 2.6.1

cpe:2.3:a:automattic:jetpack:2.6.1
Automattic » Jetpack » Version: 2.7

cpe:2.3:a:automattic:jetpack:2.7
Automattic » Jetpack » Version: 2.8

cpe:2.3:a:automattic:jetpack:2.8
Automattic » Jetpack » Version: 2.9

cpe:2.3:a:automattic:jetpack:2.9
Automattic » Jetpack » Version: 2.9.1

cpe:2.3:a:automattic:jetpack:2.9.1
Automattic » Jetpack » Version: 2.9.2

cpe:2.3:a:automattic:jetpack:2.9.2
Automattic » Jetpack » Version: 2.9.3

cpe:2.3:a:automattic:jetpack:2.9.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-0173

Products

Pricing

Contact Us