Jetpack is an ultimate toolkit for WordPress providing features like to fully customize your site, increase web site traffic through automatic social sharing, get a safer, stronger site via secure logins, and more. So, it facilitates designing, traffic growth, and security through a single tool with its core free features. There are also advanced Jetpack features payable as daily backups, premium themes, and SEO tools.
A vulnerability has existed since Jetpack 5.1
According to the new release of Jetpack team, a vulnerability in the way Jetpack processed embedded code that has existed since Jetpack 5.1, released in July 2017 has been found. Jetpack team announced new release 7.9.1 which contains a critical security update. They advise users to update all sites as soon as possible.
Moreover, minor issues like improved compatibility with Twenty Twenty, the new default theme for WordPress also come with Jetpack 7.9.1.
As a result of collaboration Jetpack Team and WordPress.org Security Team, release patched versions of every version of Jetpack since 5.1 is available. Versions released today include 5.1.1, 5.2.2, 5.3.1, 5.4.1, 5.5.2, 5.6.2, 5.7.2, 5.8.1, 5.9.1, 6.0.1, 6.1.2, 6.2.2, 6.3.4, 6.4.3, 6.5.1, 6.6.2, 6.7.1, 6.8.2, 6.9.1, 7.0.2, 7.1.2, 7.2.2, 7.3.2, 7.4.2, 7.5.4, 7.6.1, 7.7.3, 7.8.1, 7.9.1.
According to the team, if you are running any of these versions, your website is not vulnerable to this issue. But, if you’re not running the latest 7.9.1, your site is missing other security enhancements.