stats count
Monday, July 4, 2022
Home Technology WordPress Plugin Vulnerability Affects 600,000 Websites

WordPress Plugin Vulnerability Affects 600,000 Websites


The vulnerability was discovered a week ago – on January 25 – by Wai Yan Myo Thet, a researcher at PatchStack. According to him, the developer of Essential Addons for Elementor already knew about the security flaw at the time and even released a version to solve the problem.

Code example that allows failure.

However, the creator of the program was unable to fix the flaw and added new functions to prevent the vulnerability in patch 5.0.4, but the plugin only received an effective update with the latest version, released on January 28th.

Malicious code execution

A local file inclusion attack can be carried out by any user, independent of their authentication or authorization status. This technique can be used to inject malicious PHP code into files or include local files on the website system. More than 600,000 websites, according to Bleeping Computer, have yet to apply the vulnerability security update.

Users using the Essential Addons for Elementor plugin can get the latest version of the software from this link or update directly from the WordPress dashboard.





Source link

RELATED ARTICLES

Nationals Place Jackson Tetreault On IL With Stress Fracture In Shoulder

Prior to today's game, the Nationals announced that starter Jackson Tetreault has been placed on the 15-day injured list due to a...

The Daboll-Kafka collaboration: Personnel usage

The New York Giants took a big step into the modern NFL when General Manager Joe Schoen hired former Buffalo Bills...

LEAVE A REPLY

Please enter your comment!
Please enter your name here

- Advertisment -

Most Popular

Nationals Place Jackson Tetreault On IL With Stress Fracture In Shoulder

Prior to today's game, the Nationals announced that starter Jackson Tetreault has been placed on the 15-day injured list due to a...

The Daboll-Kafka collaboration: Personnel usage

The New York Giants took a big step into the modern NFL when General Manager Joe Schoen hired former Buffalo Bills...

How To Fix Posts Not Displaying Properly On The WordPress Admin page>

Sometimes things might get a little bit messy at the back end of your website, website visitors don't know what we pass through...

Recent Comments