{"id":7287,"date":"2014-04-15T00:29:49","date_gmt":"2014-04-15T06:29:49","guid":{"rendered":"http:\/\/www.evolutionarydesigns.net\/blog\/?p=7287"},"modified":"2014-04-15T00:31:53","modified_gmt":"2014-04-15T06:31:53","slug":"jetpack-2-9-3-critical-security","status":"publish","type":"post","link":"http:\/\/www.evolutionarydesigns.net\/blog\/2014\/04\/15\/jetpack-2-9-3-critical-security\/","title":{"rendered":"Jetpack 2.9.3: Critical Security Update"},"content":{"rendered":"<p>Just five days ago, on April 10th, 2014, Jetpack released their latest plugin version. During a security audit, they found a bug that allows attackers to bypass a site\u2019s access controls and publish posts. This vulnerability combined with other attacks could escalate access.<\/p>\n<p><a href=\"$Jetpack[4].png\"><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" style=\"background-image: none; padding-top: 0px; padding-left: 0px; margin-left: auto; display: block; padding-right: 0px; margin-right: auto; border: 0px;\" title=\"Jetpack\" alt=\"Jetpack\" src=\"https:\/\/i0.wp.com\/www.evolutionarydesigns.net\/blog\/wp-content\/uploads\/2014\/04\/Jetpack.png?resize=600%2C132\" width=\"600\" height=\"132\" border=\"0\" \/><\/a><\/p>\n<p>So if you haven\u2019t updated your version of Jetpack, go to your <a href=\"http:\/\/www.wordpress.org\" target=\"_blank\">WordPress<\/a> update page and update your plugin. For more information check out <a href=\"http:\/\/jetpack.me\/2014\/04\/10\/jetpack-security-update\/\" target=\"_blank\">Jetpack\u2019s news release<\/a>.<\/p>\n<h3>What is <a href=\"http:\/\/jetpack.me\/\" target=\"_blank\">Jetpack?<\/a><\/h3>\n<p>Jetpack is a plugin that connects WordPress.com features and other great features to self-hosted WordPress systems. Below is a list of plugins built into the Jetpack plugin. Information taken directly <a href=\"http:\/\/jetpack.me\/\" target=\"_blank\">Jetpack.com<\/a><\/p>\n<ul>\n<li><strong><a href=\"http:\/\/jetpack.me\/support\/beautiful-math\/\"><em>Beautiful Math<\/em><\/a><\/strong><em>: Mark up your posts with the LaTeX markup language, perfect for complex mathematical equations and other \u00fcber-geekery. <\/em><\/li>\n<li><strong><a href=\"http:\/\/jetpack.me\/support\/carousel\/\"><em>Carousel<\/em><\/a><\/strong><em>: Transform your standard image galleries into an immersive full-screen experience. <\/em><\/li>\n<li><strong><a href=\"http:\/\/jetpack.me\/support\/comments\/\"><em>Comments<\/em><\/a><\/strong><em>: Give your readers the ability to comment using their WordPress.com, Twitter, or Facebook accounts. <\/em><\/li>\n<li><strong><a href=\"http:\/\/jetpack.me\/support\/contact-form\/\"><em>Contact Form<\/em><\/a><\/strong><em>: Insert a contact form anywhere on your site. <\/em><\/li>\n<li><strong><a href=\"http:\/\/jetpack.me\/support\/custom-css-support\/\"><em>Custom CSS<\/em><\/a><\/strong><em>: Customize your site\u2019s look without modifying your theme. <\/em><\/li>\n<li><strong><a href=\"http:\/\/jetpack.me\/support\/enhanced-distribution\/\"><em>Enhanced Distribution<\/em><\/a><\/strong><em>: Share your public posts and comments to search engines and other services in real-time. <\/em><\/li>\n<li><strong><a href=\"http:\/\/jetpack.me\/support\/extra-sidebar-widgets\/\"><em>Extra Sidebar Widgets<\/em><\/a><\/strong><em>: Add images, Twitter streams, and your site\u2019s RSS links to your sidebar. <\/em><\/li>\n<li><strong><a href=\"http:\/\/jetpack.me\/support\/featured-content\/\"><em>Featured Content<\/em><\/a><\/strong><em>: The Featured Content module allows you to display specific posts in a highlighted area on your site\u2019s home page, letting your draw attention to your most important content. <\/em><\/li>\n<li><strong><a href=\"http:\/\/jetpack.me\/support\/gravatar-hovercards\/\"><em>Gravatar Hovercards<\/em><\/a><\/strong><em>: Show a pop-up business card of your users\u2019 Gravatar profiles in comments. <\/em><\/li>\n<li><strong><a href=\"http:\/\/jetpack.me\/support\/infinite-scroll\/\"><em>Infinite Scroll<\/em><\/a><\/strong><em>: Learn how to add infinite scroll support to your theme. <\/em><\/li>\n<li><strong><a href=\"http:\/\/jetpack.me\/support\/json-api\/\"><em>JSON API<\/em><\/a><\/strong><em>: Allow applications to securely access your content through the cloud. <\/em><\/li>\n<li><strong><a href=\"http:\/\/jetpack.me\/support\/likes\/\"><em>Likes<\/em><\/a><\/strong><em>: Likes are a way for people to show their appreciation for content you have written. It\u2019s also a way for you to show the world how popular your content has become. <\/em><\/li>\n<li><a href=\"http:\/\/jetpack.me\/support\/markdown\/\"><strong><em>Markdown<\/em><\/strong><\/a><em>: Gives you the option of writing posts or pages in plain-text Markdown syntax. <\/em><\/li>\n<li><strong><a href=\"http:\/\/jetpack.me\/support\/mobile-push-notifications\/\"><em>Mobile Push Notifications<\/em><\/a><\/strong><em>:<strong> <\/strong>Get notified of new comments on your Apple device. <\/em><\/li>\n<li><strong><a href=\"http:\/\/jetpack.me\/support\/mobile-theme\/\"><em>Mobile Theme<\/em><\/a><\/strong><em>: Optimize your site for mobile devices. <\/em><\/li>\n<li><strong><a href=\"http:\/\/jetpack.me\/support\/monitor\/\"><em>Monitor<\/em><\/a><\/strong><em>: Jetpack will notify you if your site goes offline and when it is accessible again. <\/em><\/li>\n<li><strong><a href=\"http:\/\/jetpack.me\/support\/omnisearch\/\"><em>Omnisearch<\/em><\/a><\/strong><em>: Search once, get results from everything! Omnisearch is a single search box that lets you search many different things. <\/em><\/li>\n<li><strong><a href=\"http:\/\/jetpack.me\/support\/photon\/\"><em>Photon<\/em><\/a><\/strong><em>: Accelerate your site by loading images from the WordPress.com CDN. <\/em><\/li>\n<li><strong><a href=\"http:\/\/jetpack.me\/support\/post-by-email\/\"><em>Post by Email<\/em><\/a><\/strong><em>: Post by Email is a way of publishing posts on your blog by email. Any email client can be used to send the email, allowing you to publish quickly and easily from devices such as cell phones. <\/em><\/li>\n<li><strong><a href=\"http:\/\/jetpack.me\/support\/publicize\"><em>Publicize<\/em><\/a><\/strong><em>: Publicize makes it easy to share your site\u2019s posts on several social media networks automatically when you publish a new post. <\/em><\/li>\n<li><strong><a href=\"http:\/\/jetpack.me\/support\/social-links\/\"><em>Social Links<\/em><\/a><\/strong><em>: this module is a canonical source, based on Publicize, that themes can use to let users specify where social icons should link to. <\/em><\/li>\n<li><strong><a href=\"http:\/\/jetpack.me\/support\/sharing\/\"><em>Sharing<\/em><\/a><\/strong><em>: Share your content on Facebook, Twitter, and more with a few simple clicks. <\/em><\/li>\n<li><strong><a href=\"http:\/\/jetpack.me\/support\/shortcode-embeds\/\"><em>Shortcode Embeds<\/em><\/a><\/strong><em>: Embed content from YouTube, Vimeo, SlideShare, and more into your site, no coding necessary. <\/em><\/li>\n<li><strong><a href=\"http:\/\/jetpack.me\/support\/wp-me-shortlinks\/\"><em>WP.me Shortlinks<\/em><\/a><\/strong><em>: Enable WP.me-powered shortlinks for all of your Posts and Pages for easier sharing. <\/em><\/li>\n<li><strong><a href=\"http:\/\/jetpack.me\/support\/spelling-and-grammar\/\"><em>Spelling and Grammar<\/em><\/a><\/strong><em>: Improve your spelling, style, and grammar with the After the Deadline proofreading service. <\/em><\/li>\n<li><strong><a href=\"http:\/\/jetpack.me\/support\/wordpress-com-stats\/\"><em>WordPress.com Stats<\/em><\/a><\/strong><em>: Monitor your stats with clear, concise reports and no additional load on your server. <\/em><\/li>\n<li><strong><a href=\"http:\/\/jetpack.me\/support\/subscriptions\/\"><em>Subscriptions<\/em><\/a><\/strong><em>: Allow users to subscribe to your posts and comments to receive notifications via email. <\/em><\/li>\n<li><strong><a href=\"http:\/\/jetpack.me\/support\/tiled-galleries\/\"><em>Tiled Galleries<\/em><\/a><\/strong><em>: Display your image galleries in three new styles: a rectangular mosaic, a square mosaic, and a circular grid. <\/em><\/li>\n<li><strong><a href=\"http:\/\/jetpack.me\/support\/toolbar-notifications\/\"><em>Toolbar Notifications<\/em><\/a><\/strong><em> \u2013 Get notified of activity on your site, right from the toolbar.<\/em><\/li>\n<\/ul>\n<p><em>Some of these features use the powerful WordPress.com cloud, others are popular features provided for the convenience of not having to install and manage several separate plugin installations.<\/em><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Just five days ago, on April 10th, 2014, Jetpack released their latest plugin version. During a security audit, they found a bug that allows attackers to bypass a site\u2019s access controls and publish posts. This vulnerability combined with other attacks could escalate access. So if you haven\u2019t updated your version of Jetpack, go to your [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":7288,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[1],"tags":[],"class_list":["post-7287","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-uncategorized","entry"],"aioseo_notices":[],"jetpack_featured_media_url":"https:\/\/i0.wp.com\/www.evolutionarydesigns.net\/blog\/wp-content\/uploads\/2014\/04\/Jetpack-e1397542440273.png?fit=600%2C133","jetpack_shortlink":"https:\/\/wp.me\/pJPdG-1Tx","jetpack_sharing_enabled":true,"jetpack-related-posts":[],"jetpack_likes_enabled":true,"_links":{"self":[{"href":"http:\/\/www.evolutionarydesigns.net\/blog\/wp-json\/wp\/v2\/posts\/7287","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.evolutionarydesigns.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.evolutionarydesigns.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.evolutionarydesigns.net\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"http:\/\/www.evolutionarydesigns.net\/blog\/wp-json\/wp\/v2\/comments?post=7287"}],"version-history":[{"count":1,"href":"http:\/\/www.evolutionarydesigns.net\/blog\/wp-json\/wp\/v2\/posts\/7287\/revisions"}],"predecessor-version":[{"id":7289,"href":"http:\/\/www.evolutionarydesigns.net\/blog\/wp-json\/wp\/v2\/posts\/7287\/revisions\/7289"}],"wp:featuredmedia":[{"embeddable":true,"href":"http:\/\/www.evolutionarydesigns.net\/blog\/wp-json\/wp\/v2\/media\/7288"}],"wp:attachment":[{"href":"http:\/\/www.evolutionarydesigns.net\/blog\/wp-json\/wp\/v2\/media?parent=7287"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.evolutionarydesigns.net\/blog\/wp-json\/wp\/v2\/categories?post=7287"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.evolutionarydesigns.net\/blog\/wp-json\/wp\/v2\/tags?post=7287"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}