NEWS
WordPress Vulnerabilities Digest - November 2022 Part 5
Each vulnerability will have a severity rating of low, medium, high, or critical. Responsible disclosure and reporting of vulnerabilities is an integral part of keeping the WordPress community safe.
WordPress Core Vulnerabilities
WordPress 6.1.1 was released on November 15, 2022, as a short-cycle maintenance release with 29 bug fixes in Core and 21 bug fixes for the block editor. Because this is a core update, be sure to update to WordPress 6.0.1 as soon as possible! As always, with a major release like this, it makes sense to ensure your site is backed up with BackupBuddy before updating.
No new WordPress core vulnerabilities were disclosed this week.
WordPress Core Dropping Support for WordPress Versions 3.7. – 4.0
In more WordPress core security news, the WordPress Security Team will no longer provide security updates for WordPress core versions 3.7 – 4.0. Please make sure all your WordPress sites are running the latest version.
WordPress Plugin Vulnerabilities
1. All-In-One Security
PLUGIN All-In-One Security (AIOS) – Security and Firewall PLUGIN SLUG all-in-one-wp-security-and-firewall INSTALLATIONS 1,000,000+ VULNERABILITY Bulk Actions via CSRF PATCHED IN VERSION 5.1.1 SEVERITY SCORE Medium CVE 2022-44737
The vulnerability has been patched, so you should update to version 5.1.1.
2. Photo Gallery
PLUGIN Photo Gallery by 10Web – Mobile-Friendly Image Gallery PLUGIN SLUG photo-gallery INSTALLATIONS 300,000+ VULNERABILITY Stored XSS via CSRF PATCHED IN VERSION 1.8.3 SEVERITY SCORE Medium CVE 2022-4058
The vulnerability has been patched, so you should update to version 1.8.3.
3. SEO Plugin by Squirrly SEO
PLUGIN SEO Plugin by Squirrly SEO PLUGIN SLUG squirrly-seo INSTALLATIONS 200,000+ VULNERABILITY Contributor+ Arbitrary File Upload PATCHED IN VERSION 12.1.11 SEVERITY SCORE Critical CVE 2022-38140
The vulnerability has been patched, so you should update to version 12.1.11.
4. Manage Notification E-mails
PLUGIN Manage Notification E-mails PLUGIN SLUG manage-notification-emails INSTALLATIONS 80,000+ VULNERABILITY Settings Reset via CSRF PATCHED IN VERSION 1.8.3 SEVERITY SCORE Medium CVE 2022-34654
The vulnerability has been patched, so you should update to version 1.8.3.
5. Easy Video Player
PLUGIN Easy Video Player PLUGIN SLUG easy-video-player INSTALLATIONS 40,000+ VULNERABILITY Contributor+ Stored XSS PATCHED IN VERSION 1.2.2.3 SEVERITY SCORE Medium CVE 2022-3937
The vulnerability has been patched, so you should update to version 1.2.2.3.
6. Quiz and Survey Master
PLUGIN Quiz And Survey Master – Best Quiz, Exam and Survey Plugin for WordPress PLUGIN SLUG quiz-master-next INSTALLATIONS 40,000+ VULNERABILITY Unauthenticated iFrame Injection; Improper Input Validation PATCHED IN VERSION 8.0.5 SEVERITY SCORE High CVE 2022-4032
The vulnerability has been patched, so you should update to version 8.0.5.
7. Appointment Hour Booking
PLUGIN Appointment Hour Booking – WordPress Booking Plugin PLUGIN SLUG appointment-hour-booking INSTALLATIONS 30,000+ VULNERABILITY Unauthenticated iFrame Injection; CSV Injection; CAPTCHA Bypass PATCHED IN VERSION 1.3.73 SEVERITY SCORE High CVE 2022-4035
The vulnerability has been patched, so you should update to version 1.3.73.
8. wpForo Forum
PLUGIN wpForo Forum PLUGIN SLUG wpforo INSTALLATIONS 20,000+ VULNERABILITY Subscriber+ Forum Post Set as Private/Public via IDOR PATCHED IN VERSION 2.0.6 SEVERITY SCORE Medium CVE 2022-40206
The vulnerability has been patched, so you should update to version 2.0.6.
9. Directorist
PLUGIN Directorist – WordPress Business Directory Plugin with Classified Ads Listings PLUGIN SLUG directories INSTALLATIONS 10,000+ VULNERABILITY Subscriber+ Sensitive Information Disclosure PATCHED IN VERSION 7.4.4 SEVERITY SCORE Medium CVE 2022-3961
The vulnerability has been patched, so you should update to version 7.4.4.
10. Videojs HTML5 Player
PLUGIN Videojs HTML5 Player PLUGIN SLUG videojs-html5-player INSTALLATIONS 10,000+ VULNERABILITY Contributor+ Stored XSS PATCHED IN VERSION 1.1.9 SEVERITY SCORE Medium CVE 2022-3985
The vulnerability has been patched, so you should update to version 1.1.9.
11. External Media
PLUGIN External Media PLUGIN SLUG external-media INSTALLATIONS 7,000+ VULNERABILITY Admin+ Stored XSS PATCHED IN VERSION 1.0.36 SEVERITY SCORE Low CVE 2022-3832
The vulnerability has been patched, so you should update to version 1.0.36.
12. WP Stripe Checkout
PLUGIN WP Stripe Checkout PLUGIN SLUG wp-stripe-checkout INSTALLATIONS 4,000+ VULNERABILITY Contributor+ Stored XSS PATCHED IN VERSION 1.2.2.21 SEVERITY SCORE Medium CVE 2022-3986
The vulnerability has been patched, so you should update to version 1.2.2.21.
13. Pie Register
PLUGIN Registration Forms – User Profile, Custom Registration Form, Login Form, Invitation-Based Registrations for WordPress PLUGIN SLUG pie-register INSTALLATIONS 4,000+ VULNERABILITY Unauthenticated Arbitrary User Deletion PATCHED IN VERSION 3.8.1.3 SEVERITY SCORE High CVE 2022-4024
The vulnerability has been patched, so you should update to version 3.8.1.3.
14. Flowplayer Video Player
PLUGIN Flowplayer Video Player PLUGIN SLUG flowplayer6-video-player INSTALLATIONS 2,000+ VULNERABILITY Contributor+ Stored XSS PATCHED IN VERSION 1.0.5 SEVERITY SCORE Medium CVE 2022-3984
The vulnerability has been patched, so you should update to version 1.0.5.
15. JoomSport
PLUGIN JoomSport – for Sports: Team & League, Football, Hockey & more PLUGIN SLUG joomsport-sports-league-results-management INSTALLATIONS 2,000+ VULNERABILITY Unauthenticated SQLi PATCHED IN VERSION 5.2.8 SEVERITY SCORE High CVE 2022-4050
The vulnerability has been patched, so you should update to version 5.2.8.
16. Checkout for PayPal
PLUGIN Checkout for PayPal PLUGIN SLUG checkout-for-paypal INSTALLATIONS 1,000+ VULNERABILITY Contributor+ Stored XSS PATCHED IN VERSION 1.0.14 SEVERITY SCORE Medium CVE 2022-3983
The vulnerability has been patched, so you should update to version 1.0.14.
17. JobBoardWP
PLUGIN JobBoardWP – Job Board Listings and Submissions PLUGIN SLUG jobboardwp INSTALLATIONS 1,000+ VULNERABILITY Unauthenticated Arbitrary File Upload PATCHED IN VERSION 1.2.2 SEVERITY SCORE Critical CVE 2022-4061
The vulnerability has been patched, so you should update to version 1.2.2.
18. InPost Gallery
PLUGIN InPost Gallery PLUGIN SLUG inpost-gallery INSTALLATIONS 1,000+ VULNERABILITY Unauthenticated LFI to RCE PATCHED IN VERSION 2.1.4.1 SEVERITY SCORE Critical CVE 2022-4063
The vulnerability has been patched, so you should update to version 2.1.4.1.
19. Syncee – Global Dropshipping
PLUGIN Syncee – Global Dropshipping PLUGIN SLUG syncee-global-dropshipping INSTALLATIONS 700+ VULNERABILITY Authentication Token Disclosure PATCHED IN VERSION 1.0.10 SEVERITY SCORE High CVE 2022-3694
The vulnerability has been patched, so you should update to version 1.0.10.
20. Simple:Press
PLUGIN Simple:Press – WordPress Forum Plugin PLUGIN SLUG simplepress INSTALLATIONS 600+ VULNERABILITY Admin+ Arbitrary File Update; FILE DELETION; Unauthenticated Stored XSS via Forum Replies; Subscriber+ Stored XSS via Profile Signatures PATCHED IN VERSION 6.8.1 SEVERITY SCORE Low CVE 2022-4031
The vulnerability has been patched, so you should update to version 6.8.1.
21. Responsive Lightbox2
PLUGIN Responsive Lightbox2 PLUGIN SLUG responsive-lightbox2 INSTALLATIONS 300+ VULNERABILITY Contributor+ Stored XSS PATCHED IN VERSION 1.0.4 SEVERITY SCORE Medium CVE 2022-3987
The vulnerability has been patched, so you should update to version 1.0.4.
22. FlyingPress
PLUGIN SLUG flying-press VULNERABILITY Arbitrary Settings Update to Stored XSS PATCHED IN VERSION 3.9.7 SEVERITY SCORE High
The vulnerability has been patched, so you should update to version 3.9.7.
23. SMSA Shipping for WooCommerce
PLUGIN SMSA Shipping for WooCommerce PLUGIN SLUG smsa-shipping-for-woocommerce VULNERABILITY Subscriber+ Arbitrary File Download PATCHED IN VERSION 1.0.5 SEVERITY SCORE High CVE 2022-4107
The vulnerability has been patched, so you should update to version 1.0.5.
24. WP CSV Exporter
PLUGIN WP CSV Exporter PLUGIN SLUG wp-csv-exporter VULNERABILITY CSV Injection PATCHED IN VERSION 1.3.7 SEVERITY SCORE Low CVE 2022-3605
The vulnerability has been patched, so you should update to version 1.3.7.
25. Wholesale Market for WooCommerce
PLUGIN Wholesale Market for WooCommerce PLUGIN SLUG wholesale-market-for-woocommerce VULNERABILITY Admin+ Arbitrary File Download; Unauthenticated Arbitrary File Download PATCHED IN VERSION 1.0.8 SEVERITY SCORE Medium CVE 2022-4108
The vulnerability has been patched, so you should update to version 1.0.8.
WordPress Plugin Vulnerabilities – No Known Fix
Until a patch is available, immediately uninstall and delete the plugin.
Popup Manager
PLUGIN Popup Manager PLUGIN SLUG popup-manager VULNERABILITY Unauthenticated Arbitrary Popup Deletion; Unauthenticated Stored XSS PATCHED IN VERSION No Fix SEVERITY SCORE Medium CVE 2022-4124
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
Menu Item Visibility Control
PLUGIN Menu Item Visibility Control PLUGIN SLUG menu-items-visibility-control VULNERABILITY Admin+ Arbitrary PHP Code Execution PATCHED IN VERSION No Fix SEVERITY SCORE Medium CVE 2021-24942
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.
WordPress Theme Vulnerabilities
1. Theme and plugin translation for Polylang
THEME Theme and plugin translation for Polylang THEME SLUG theme-translation-for-polylang VULNERABILITY Unauthenticated Translation Settings Update PATCHED IN VERSION 3.2.17 SEVERITY SCORE Medium CVE 2022-4169
The vulnerability has been patched, so you should update to version 3.2.17.
2. BeTheme
THEME Betheme THEME SLUG betheme VULNERABILITY Subscriber+ Stored XSS PATCHED IN VERSION 26.6.3 SEVERITY SCORE Medium CVE 2022-45363
The vulnerability has been patched, so you should update to version 26.6.3.
If you are under WordPress Managed Maintenance plan - there is nothing to worry about as we've taken the necessary steps to protect your sites. Yay!
The information for this blog post was taken from iThemes Vulnerability Roundup
If you're not under our maintenance plan... well, what are you waiting for? Sign-up today!