Automattic · Jetpack · CVE-2016-10705
**Name of the Vulnerable Software and Affected Versions**
Jetpack plugin versions prior to 4.0.4
**Description**
The issue is related to a cross-site scripting (XSS) problem. It affects the Likes module of the Jetpack plugin.
**Recommendations**
For versions prior to 4.0.4, update to version 4.0.4 or later to resolve the issue.