JetEngine
jet-engineVulnerabilities:
15
Last Updated:
March 31, 2026
Active Installs:
n/a
Published
Title
Fixed in
CVSS
Published
2026-03-23
Title
JetEngine < 3.8.6.2 - Unauthenticated SQL Injection via Listing Grid 'filtered_query' Parameter
Fixed in
Fixed in 3.8.6.2
CVSS
7.5 (high)
Published
2026-02-26
Fixed in
Fixed in 3.8.1.2
CVSS
7.2 (high)
Published
2026-02-11
Fixed in
Fixed in 3.8.1
CVSS
6.1 (medium)
Published
2026-01-05
Fixed in
Fixed in 3.7.8
CVSS
7.2 (high)
Published
2025-12-30
Fixed in
Fixed in 3.8.1.2
CVSS
4.3 (medium)
Published
2025-09-18
Fixed in
Fixed in 3.7.4
CVSS
6.4 (medium)
Published
2025-07-30
Fixed in
Fixed in 3.7.2
CVSS
6.4 (medium)
Published
2025-07-16
Fixed in
Fixed in 3.7.1.1
CVSS
4.3 (medium)
Published
2025-07-13
Fixed in
Fixed in 3.7.1.1
CVSS
6.6 (medium)
Published
2025-06-27
Fixed in
Fixed in 3.7.1.1
CVSS
6.4 (medium)
Published
2025-04-11
Fixed in
Fixed in 3.6.5
CVSS
6.4 (medium)
Published
2025-01-17
Title
Jet Engine < 3.6.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via list_tag Parameter
Fixed in
Fixed in 3.6.3
CVSS
6.4 (medium)
Published
2023-11-28
Fixed in
Fixed in 3.2.5
CVSS
8.8 (high)
Published
2023-11-28
Fixed in
Fixed in 3.2.5
CVSS
7.1 (high)
Published
2023-03-20
Fixed in
Fixed in 3.1.3.1
CVSS
7.2 (high)
WPScan 