English (US) 日本語
Submit a request

Technical question Licensing question
Sign in

WordPress plugins/themes can not be updated via Plesk WordPress Toolkit: Passed 'exception' value must be an \Exception object
Plesk Premium Email shows the warning on Plesk server: Necessary packages are not installed
After updating WordPress Toolkit to version 5.3, WordPress instances on domains with PHP 5.3 or lower could not be managed via WordPress Toolkit
Let's Encrypt extension in Plesk shows that certificate will no longer be used for example.com even if it is correctly installed
WordPress functionality is broken in Plesk after changing domain PHP version to 8.0: Uncaught TypeError: implode(): Argument #2 ($array) must be of type ?array,
Unable to activate or update the Comodo rule-set in Plesk ModSecurity: Error interacting with https://waf.comodo.com/doc/meta_comodo_apache.yaml: <urlopen error [Errno 113] No route to host>
Can't login to Wordpress from Plesk dashboard
Websites hosted on a Plesk server with Imunify360 are intermittently unavailable: Error establishing a database connection
How to install Magento for a domain in Plesk
The Plesk Email Security dashboard keeps loading, or statistics are not updated

See more

A Zero-Day vulnerability in Wordpress Jetpack plugin

Vladimir Chernikov

Updated December 29, 2020 17:22

kb: technical ext: wptk ABT: Group A

Applicable to:

Plesk for Windows
Plesk for Linux

Situation

A Zero-Day vulnerability has been discovered in the Jetpack plugin in Wordpress

Impact

The vulnerability in the Jetpack plugin which is able to process embed code:
https://jetpack.com/2019/11/19/jetpack-7-9-1-maintenance-security/

Call to action

The JetPack plugin was updated on November 19, 2019. Wordpress Toolkit will automatically install Jetpack update if auto-updates are enabled.

If auto-updates are disabled it is required to update the Jetpack plugin manually as soon as possible to the 7.9.1 version or higher.

To find the Wordpress instances with installed JetPack plugin use the following solutions:

Log in to Plesk
Go to Wordpress > Plugins and type in search field "Jetpack". It will show all the websites with Jetpack installed and information about the installed version:

Comments

0 comments

Please sign in to leave a comment.

Have more questions? Submit a request