NEWS
WordPress Vulnerabilities Digest - May 2022 Part 3
Each vulnerability will have a severity rating oflow, medium, high, or critical. Responsible disclosure and reporting of vulnerabilities is an integral part of keeping the WordPress community safe.
WordPress Core Vulnerabilities
WordPress 6.0 Arturo is out! This major version release of WordPress was built to help you unlock your creative aspirations and make your site-building experience more intuitive, including almost 1,000 enhancements and bug fixes. See whats new in WordPress 6.0.
No new WordPress core vulnerabilities were disclosed this week.
WordPress Plugin Vulnerabilities
1. Google Tag Manager for WordPress
PLUGIN GTM4WP INSTALLATIONS 600,000+ VULNERABILITY Reflected Cross-Site Scripting PATCHED IN VERSION 1.15.1 SEVERITY SCORE Medium
The vulnerability has been patched, so you should update to version 1.15.1.
2. Newsletter
PLUGIN Newsletter Send awesome emails from WordPress INSTALLATIONS 400,000+ VULNERABILITY Reflected Cross-Site Scripting PATCHED IN VERSION 7.4.5 SEVERITY SCORE Low
The vulnerability has been patched, so you should update to version 7.4.5.
3. Minimal Coming Soon Coming Soon Page
PLUGIN Minimal Coming Soon Coming Soon Page INSTALLATIONS 100,000+ VULNERABILITY Multiple Authenticated Stored XSS PATCHED IN VERSION 2.35 SEVERITY SCORE Low
The vulnerability has been patched, so you should update to version 2.35.
4. Export any WordPress data to XML/CSV
PLUGIN Export any WordPress data to XML/CSV INSTALLATIONS 90,000+ VULNERABILITY Admin+ SQL Injection PATCHED IN VERSION 1.3.5 SEVERITY SCORE Medium
The vulnerability has been patched, so you should update to version 1.3.5.
5. JupiterX Core
PLUGIN Jupiter X Core INSTALLATIONS 90,000+ VULNERABILITY Information Disclosure, Modification, and Denial of Service; Subscriber+ Arbitrary Plugin Deactivation and Settings Update; Subscriber+ Privilege Escalation and Post Deletion PATCHED IN VERSION 2.0.7 SEVERITY SCORE Medium
The vulnerability has been patched, so you should update to version 2.0.7.
6. MailerLite
PLUGIN MailerLite Signup forms (official) INSTALLATIONS 60,000+ VULNERABILITY Reflected Cross-Site Scripting PATCHED IN VERSION 1.5.4 SEVERITY SCORE Medium
The vulnerability has been patched, so you should update to version 1.5.4.
7. Simple Membership
PLUGIN Simple Membership INSTALLATIONS 50,000+ VULNERABILITY Reflected Cross-Site Scripting PATCHED IN VERSION 4.1.1 SEVERITY SCORE Medium
The vulnerability has been patched, so you should update to version 4.1.1.
8. Appointment Hour Booking
PLUGIN Appointment Hour Booking WordPress Booking Plugin INSTALLATIONS 30,000+ VULNERABILITY Admin+ Stored Cross-Site Scripting PATCHED IN VERSION 1.3.56 SEVERITY SCORE Low
The vulnerability has been patched, so you should update to version 1.3.56.
9. Themify WooCommerce Product Filter
PLUGIN Themify WooCommerce Product Filter INSTALLATIONS 30,000+ VULNERABILITY Reflected Cross-Site Scripting PATCHED IN VERSION 1.3.8 SEVERITY SCORE Medium
The vulnerability has been patched, so you should update to version 1.3.8.
10. Like Button Rating
PLUGIN Like Button Rating ? LikeBtn INSTALLATIONS 7,000+ VULNERABILITY Arbitrary e-mail Sending PATCHED IN VERSION 2.6.45 SEVERITY SCORE Medium
The vulnerability has been patched, so you should update to version 2.6.45.
11. KiviCare
PLUGIN KiviCare Clinic & Patient Management System (EHR) INSTALLATIONS 1,000+ VULNERABILITY Unauthenticated SQLi PATCHED IN VERSION 2.3.9 SEVERITY SCORE High
The vulnerability has been patched, so you should update to version 2.3.9.
12. Zephyr Project Manager
PLUGIN Zephyr Project Manager INSTALLATIONS 1,000+ VULNERABILITY Reflected Cross-Site Scripting PATCHED IN VERSION 3.2.41 SEVERITY SCORE Medium
The vulnerability has been patched, so you should update to version 3.2.41.
13. Popup Box
PLUGIN Popup Box new WordPress popup plugin INSTALLATIONS 1,000+ VULNERABILITY Admin+ LFI PATCHED IN VERSION 2.2 SEVERITY SCORE Medium
The vulnerability has been patched, so you should update to version 2.2.
14. Keep Backup Daily
PLUGIN Keep Backup Daily INSTALLATIONS 800+ VULNERABILITY Reflected Cross-Site Scripting PATCHED IN VERSION 2.0.3 SEVERITY SCORE Medium
The vulnerability has been patched, so you should update to version 2.0.3.
15. Filr Secure Document Library
PLUGIN Filr Secure document library INSTALLATIONS 600+ VULNERABILITY Subscriber+ AJAX Calls PATCHED IN VERSION 1.2.2.1 SEVERITY SCORE Critical
The vulnerability has been patched, so you should update to version 1.2.2.1.
16. Google Places Review
PLUGIN Google Places Reviews VULNERABILITY Admin+ Stored Cross Site Scripting PATCHED IN VERSION 2.0.0 SEVERITY SCORE Low
The vulnerability has been patched, so you should update to version 2.0.0.
17. Slideshow CK
PLUGIN Slideshow CK VULNERABILITY Admin+ Stored Cross-Site Scripting PATCHED IN VERSION 1.4.10 SEVERITY SCORE Low
The vulnerability has been patched, so you should update to version 1.4.10.
18. The School Management
PLUGIN VULNERABILITY Unauthenticated RCE via REST API PATCHED IN VERSION 9.9.7 SEVERITY SCORE Critical
The vulnerability has been patched, so you should update to version 9.9.7.
WordPress Plugin Vulnerabilities No Known Fix
iQ Block Country
PLUGIN iQ Block Country VULNERABILITY Protection Bypass due to IP Spoofing PATCHED IN VERSION No Fix SEVERITY SCORE Medium
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
Code Snippets Extended
PLUGIN Code Snippets Extended VULNERABILITY Stored Cross-Site Scripting via CSRF; Arbitrary Snippet Deletion/Disabling via CSRF PATCHED IN VERSION No Fix SEVERITY SCORE Medium
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
Webriti SMTP Mail
PLUGIN Webriti SMTP Mail VULNERABILITY Arbitrary Settings Update via CSRF PATCHED IN VERSION No Fix SEVERITY SCORE Medium
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
Change Uploaded File Permissions
PLUGIN Change Uploaded File Permissions VULNERABILITY File Permission Update via CSRF PATCHED IN VERSION No Fix SEVERITY SCORE Medium
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
New User Email Set Up
PLUGIN New User Email Set Up VULNERABILITY Arbitrary Settings Update via CSRF PATCHED IN VERSION No Fix SEVERITY SCORE Medium
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
RB Internal Links
PLUGIN RB Internal Links VULNERABILITY Stored Cross-Site Scripting via CSRF PATCHED IN VERSION No Fix SEVERITY SCORE Medium
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
postTabs
PLUGIN postTabs VULNERABILITY Arbitrary Settings Update via CSRF to Stored XSS PATCHED IN VERSION No Fix SEVERITY SCORE Medium
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
Private Files
PLUGIN Private Files VULNERABILITY Protection Disabling via CSRF PATCHED IN VERSION No Fix SEVERITY SCORE Medium
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
WP Athletics
PLUGIN WP Athletics VULNERABILITY Subscriber+ Stored Cross-Site Scripting; Reflected Cross-Site Scripting PATCHED IN VERSION No Fix SEVERITY SCORE High
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
WP-CRM
PLUGIN WP-CRM Customer Relations Management for WordPress VULNERABILITY CSV Injection PATCHED IN VERSION No Fix SEVERITY SCORE Low
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
Advanced Admin Search
PLUGIN Advanced Admin Search VULNERABILITY Reflected Cross-Site Scripting PATCHED IN VERSION No Fix SEVERITY SCORE Medium
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
WP-chgFontSize
PLUGIN WP-chgFontSize VULNERABILITY Arbitrary Settings Update via CSRF to Stored XSS PATCHED IN VERSION No Fix SEVERITY SCORE Medium
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
Latest Tweets Widget
PLUGIN Latest Tweets Widget VULNERABILITY Arbitrary Settings Update via CSRF PATCHED IN VERSION No Fix SEVERITY SCORE Medium
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
WP Admin Style
PLUGIN WP Admin Style VULNERABILITY Admin+ Stored Cross-Site Scripting PATCHED IN VERSION No Fix SEVERITY SCORE Low
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
Opal Hotel Room Booking
PLUGIN Opal Hotel Room Booking VULNERABILITY Contributor+ Stored Cross-Site Scripting PATCHED IN VERSION No Fix SEVERITY SCORE Medium
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
Genki Pre-Publish Reminder
PLUGIN Genki Pre-Publish Reminder VULNERABILITY Stored XSS & RCE via CSRF PATCHED IN VERSION No Fix SEVERITY SCORE High
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
Enqueue Anything
PLUGIN Enqueue Anything VULNERABILITY Subscriber+ Arbitrary Asset/Post Deletion PATCHED IN VERSION No Fix SEVERITY SCORE Medium
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
Carousel CK
PLUGIN Carousel CK VULNERABILITY Admin+ Stored Cross-Site Scripting PATCHED IN VERSION No Fix SEVERITY SCORE Low
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
Auto Delete Posts
PLUGIN Auto Delete Posts VULNERABILITY Arbitrary Settings Update via CSRF PATCHED IN VERSION No Fix SEVERITY SCORE Medium
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
LaTeX for WordPress
PLUGIN LaTeX for WordPress VULNERABILITY Arbitrary Settings Update via CSRF to Stored XSS PATCHED IN VERSION No Fix SEVERITY SCORE Medium
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
One Click Plugin Updater
PLUGIN One Click Plugin Updater VULNERABILITY Arbitrary Settings Update via CSRF PATCHED IN VERSION No Fix SEVERITY SCORE Medium
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
Member Hero
PLUGIN Member Hero VULNERABILITY Unauthenticated RCE PATCHED IN VERSION No Fix SEVERITY SCORE Critical
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
Log WP_Mail
PLUGIN Log WP_Mail VULNERABILITY Email Logs Publicly Accessible PATCHED IN VERSION No Fix SEVERITY SCORE High
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
Sideblog
PLUGIN Sideblog WordPress Plugin VULNERABILITY Arbitrary Settings Update via CSRF to Stored XSS PATCHED IN VERSION No Fix SEVERITY SCORE Medium
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
Bestbooks
PLUGIN Bestbooks VULNERABILITY Unauthenticated SQLi PATCHED IN VERSION No Fix SEVERITY SCORE High
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
Static Page eXtended
PLUGIN Static Page eXtended VULNERABILITY Arbitrary Settings Update via CSRF to Stored XSS PATCHED IN VERSION No Fix SEVERITY SCORE Medium
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
Quick Subscribe
PLUGIN Quick Subscribe VULNERABILITY Arbitrary Settings Update via CSRF to Stored XSS PATCHED IN VERSION No Fix SEVERITY SCORE Medium
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
Sticky Popup
PLUGIN Sticky Popup VULNERABILITY Admin+ Stored Cross-Site Scripting PATCHED IN VERSION No Fix SEVERITY SCORE Low
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
Email Users
PLUGIN Email Users VULNERABILITY Arbitrary Settings Update via CSRF PATCHED IN VERSION No Fix SEVERITY SCORE Medium
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
WP SVG Icons
PLUGIN WP SVG Icons VULNERABILITY Admin+ Remote Code Execution (RCE) PATCHED IN VERSION No Fix SEVERITY SCORE Medium
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
Peters Collaboration E-mails
PLUGIN Peters Collaboration E-mails VULNERABILITY Arbitrary Settings Update via CSRF PATCHED IN VERSION No Fix SEVERITY SCORE Medium
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
Useful Banner Manager
PLUGIN Useful Banner Manager VULNERABILITY Modify banners via CSRF PATCHED IN VERSION No Fix SEVERITY SCORE Medium
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
OnePress Social Locker
PLUGIN OnePress Social Locker VULNERABILITY Arbitrary Settings Update via CSRF PATCHED IN VERSION No Fix SEVERITY SCORE Medium
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
Core Control
PLUGIN Core Control VULNERABILITY Arbitrary Settings Update via CSRF PATCHED IN VERSION No Fix SEVERITY SCORE Medium
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
HC Custom WP-Admin URL
PLUGIN HC Custom WP-Admin URL VULNERABILITY Arbitrary Settings Update via CSRF PATCHED IN VERSION No Fix SEVERITY SCORE Medium
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
Hot Linked Image Cacher
PLUGIN Hot Linked Image Cacher VULNERABILITY Image upload/cache abuse via CSRF PATCHED IN VERSION No Fix SEVERITY SCORE Low
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
WordPress Theme Vulnerabilities
1. Jupiter & JupiterX
THEME JupiterX VULNERABILITY Subscriber+ Path Traversal and Local File Inclusion; Subscriber+ Arbitrary Plugin Deletion; Subscriber+ Privilege Escalation and Post Deletion; Subscriber+ Path Traversal and Local File Inclusion; Subscriber+ Arbitrary Plugin Deactivation and Settings Update PATCHED IN VERSION 6.10.2 SEVERITY SCORE High
The vulnerability has been patched, so you should update to version 6.10.2.
If you are under WordPress Managed Maintenance plan - there is nothing to worry about as we've taken the necessary steps to protect your sites. Yay!
The information for this blog post was taken from iThemes Vulnerability Roundup
If you're not under our maintenance plan... well, what are you waiting for? Sign-up today!