CVE-2016-10706

CVE-2016-10706

EPSS 1.0%

The Jetpack plugin before 4.0.3 for WordPress has XSS via a crafted Vimeo link.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://jetpack.com/2016/05/27/jetpack-4-0-3-critical-security-update/https://www.wordfence.com/blog/2016/05/jetpack-vulnerability/