Researchers have discovered critical vulnerabilities in WordPress plugins that could affect about 400,000 websites. The three affected plugins include InfiniteWP Client, WP Time Capsule, as well as WP Database Reset.
No evidence suggests that attackers are actively exploiting the vulnerabilities in the three WordPress plugins. However, it would be wise to patch the flaws as soon as possible.
According to the security researchers, the two security flaws in the WP Database Reset are the least critical.
The first allows an unauthenticated person to reset any table in the database to its original WordPress state. And this could result in the site resetting to the default WP settings — or worse, a complete loss of data.
The second security flaw in WP Database Reset, on the other hand, causes the privilege-escalation vulnerability. That means any authenticated user will gain administrative rights and lock other users out.
Version 3.15 patches the two WP Database Reset plugin vulnerabilities. And experts advise that site administrators update to the new version.
The Other WordPress Plugins Vulnerabilities
Here’s a break down of the other security flaws.
WP Time Capsule
WP Time Capsule helps site administrators conveniently backup their websites, and the plugin runs on over 20,000 websites.
Now the critical flaw in the plugin could lead to an authentication bypass. Attackers can include a string in a POST request to obtain a list of all administrative accounts and log into the first one automatically.
Be that as it may, a recent version of the plugin, 1.21.16, can fix the vulnerability.
InfiniteWP Client
Over 300,000 websites are using InfiniteWP Client plugin, making it the highest-impact vulnerability.
Researchers found a security flaw that allows anyone with no credentials logs into an administrative account. In other words, people exploiting the vulnerability only need the username of a valid account.
From there, the attacker can choose to add new accounts, delete contents, and carry out a wide range of activities.
A researcher at Web security firm Sucuri, Marc-Alexandre Montpas, explained in a post:
“Logical vulnerabilities like the ones are seen in this recent disclosure can result in severe issues for Web applications and components. These flaws can be exploited to bypass authentication controls—and in this case, log in to an administrator account without a password.”
Site administrators that are using InfiniteWP Client version 1.9.4.4 or earlier should update to 1.9.4.5 immediately.
Comments (0)
Most Recent