Why You Need To Update Your Jetpack Plug-In Right Now

wordpress security

It is a warning to all Wordpress users: update your Jetpack plug-in right now to protect your site from a huge security breach. CSO Online reports that the popular plug-in has a flaw that could make your site vulnerable to attacks.

Many are using Jetpack as a free tool for website optimization, management, and security features. With more than a million active installation, web security firm Sucuri is warning users about its findings. It claims to have found a stored cross-site scripting (XSS) vulnerability. All Jetpack released since 2012 are vulnerable and should be updated immediately.

The flaw was found in the Shortcode Embeds Jetpack module, where users are able to embed external material into their content. It can be used to add malicious JavaScript code into comments.

jetpack

CSO explains how this can cause a huge problem for Wordpress users.

“Since the JavaScript code is persistent, it will get executed in users’ browsers in the context of the affected website every time they view the malicious comment. This can be used to steal their authentication cookies, including the administrator’s session; to redirect visitors to exploits, or to inject search engine optimization (SEO) spam.”

See Also
Soaring Gold Prices

Jetpack developers are answering causes for concern by working closely with Wordpress’ security experts. They will push an update for all affected versions through an auto-update. Sucuri’s researcher, Marc-Alexandre Montpas explained the vulnerability a bit more.

“The vulnerability can be easily exploited via wp-comments and we recommend everyone to update asap, if you have not done so yet,” Montpas said.

This isn’t the first time a plug-in was found to cause a security issue with Wordpress sites.

Feeling stuck in self-doubt?

Stop trying to fix yourself and start embracing who you are. Join the free 7-day self-discovery challenge and learn how to transform negative emotions into personal growth.

Join Free Now

Picture of Meagan Freeman

Meagan Freeman

RECENT ARTICLES

TRENDING AROUND THE WEB

7 signs you’re in a relationship with someone who lacks emotional depth

7 signs you’re in a relationship with someone who lacks emotional depth

Baseline

10 personality traits of men who show true loyalty in a relationship

10 personality traits of men who show true loyalty in a relationship

Global English Editing

10 signs you’re giving way too much and your partner is taking advantage of it

10 signs you’re giving way too much and your partner is taking advantage of it

Small Business Bonfire

4 zodiac signs who are definitely on the right path in life

4 zodiac signs who are definitely on the right path in life

Baseline

7 clever ways to show a master manipulator you won’t play their games

7 clever ways to show a master manipulator you won’t play their games

Small Business Bonfire

10 subtle signs you are actually an extremely likable person

10 subtle signs you are actually an extremely likable person

Global English Editing