cleantalk
Vulnerabilities and Security Researches

Jetpack Boost – Website Speed, Performance and Critical CSS, CVE-2024-6584

CVE, Research URL

CVE-2024-6584

Home page URL

Security reports for Jetpack Boost – Website Speed, Performance and Critical CSS

Application

Jetpack Boost – Website Speed, Performance and Critical CSS

Published on
May 16, 2025
Research Description
The 'wp_ajax_boost_proxy_ig' action allows administrators to make GET requests to arbitrary URLs.
Affected versions
Min -, max 3.4.7.
Status
vulnerable
Previous vulnerability researches
Jetpack Boost – Website Speed, Performance and Critical CSS (CVE-2024-10076) , May 16, 2025
Jetpack Boost – Website Speed, Performance and Critical CSS (CVE-2024-6584) , Aug 02, 2024
New vulnerability
JSFiddle Shortcode (CVE-2024-10818) , May 17, 2025
Panorama – WordPress Project Management Plugin (CVE-2024-11843) , May 17, 2025
The GDPR Framework By Data443 (CVE-2024-13621) , May 17, 2025
Mobile Contact Bar (CVE-2024-12739) , May 17, 2025
Contact Form, Survey & Popup Form Plugin for WordPress – ARForms Form Builder (CVE-2024-10504) , May 17, 2025