cleantalk
Vulnerabilities and Security Researches

Jetpack – WP Security, Backup, Speed, & Growth, CVE-2023-54332

CVE, Research URL

CVE-2023-54332

Home page URL

Security reports for Jetpack – WP Security, Backup, Speed, & Growth

Application

Jetpack – WP Security, Backup, Speed, & Growth

Published on
Jan 14, 2026
Research Description
Jetpack 11.4 contains a cross-site scripting vulnerability in the contact form module that allows attackers to inject malicious scripts through the post_id parameter. Attackers can craft malicious URLs with script payloads to execute arbitrary JavaScript in victims' browsers when they interact with the contact form page.
Affected versions
max 11.4.
Status
vulnerable
Previous vulnerability researches
Jetpack Feedback Exporter (CVE-2025-32251) , Apr 06, 2025
reCAPTCHA Jetpack (CVE-2025-32494) , Apr 11, 2025
reCAPTCHA Jetpack (CVE-2024-3941) , Jun 07, 2024
reCAPTCHA Jetpack (CVE-2024-3940) , Jun 07, 2024
Booster for WooCommerce (CVE-2024-13342) , Sep 01, 2025
New vulnerability
Testimonial Slider (CVE-2022-50947) , May 12, 2026
Simple Cloudflare Turnstile – CAPTCHA Alternative (CVE-2026-40799) , May 12, 2026
IP2Location Country Blocker (CVE-2022-50961) , May 12, 2026
Jetpack – WP Security, Backup, Speed, & Growth (CVE-2022-50958) , May 11, 2026
Error Log Monitor, Activity Logs, User Activity Tracking from Logtivity (CVE-2026-8198) , May 11, 2026