Jupiter X Core

Vulnerabilities 25Slug jupiterx-coreLatest version 4.15.0WordPress.org →

Minimum safe version

4.14.2

Update to 4.14.2 or later to address 25 fixable vulnerabilities

Latest available4.15.0
N/A
2026-04-20< 4.14.2

Jupiter X Core <= 4.14.1 - Missing Authorization

WordfenceCVE
N/A
2026-04-13< 4.14.2

Jupiter X Core <= 4.14.1 - Authenticated (Subscriber+) Stored Cross-Site Scripting

WordfenceCVE
N/A
2026-03-23< 4.14.2

JupiterX Core <= 4.14.1 - Authenticated (Subscriber+) Missing Authorization To Limited File Upload via Popup Template Import

WordfenceCVE
Medium 6.4
2025-05-17< 4.9.1

Jupiterx Core <= 4.8.12 - Authenticated (Contributor+) Stored Cross-Site Scripting via Inline SVG

EUVDWordfenceCVE
High 8.1
2025-04-26< 4.8.12

Jupiter X Core <= 4.8.11 - Unauthenticated PHP Object Injection via PHAR

EUVDWordfenceCVE
High 8.8
2025-02-01< 4.8.8

Jupiter X Core <= 4.8.7 - Authenticated (Contributor+) SVG Upload to Local File Inclusion (Remote Code Execution)

EUVDWordfenceCVE
Medium 6.5
2025-02-01< 4.8.8

Jupiterx Core <= 4.8.7 - Authenticated (Contributor+) Arbitrary File Read

EUVDWordfenceCVE
N/A
2022-08-08< 2.1.0

Jupiter X Core <= 2.0.9 - Missing Authorization Checks

Wordfence