Target Remote Code Execution

February 1, 2017

name: WordPress REST API Vulnerability
officially announced: FEBRUARY 1, 2017
Risk: Severe
Exploitation Level: Easy/Remote
DREAD Score: 9/10
Vulnerability: Privilege Escalation + Content Injection
Patched Version: WordPress 4.7.2

what: This privilege escalation vulnerability affects the WordPress REST API that was recently added and enabled by default on WordPress 4.7.0.

how: One of these REST endpoints allows access (via the API) to view, edit, delete and create posts. Within this particular endpoint, a subtle bug allows visitors to edit any post on the site. The REST API is enabled by default on all sites using WordPress 4.7.0 or 4.7.1. If your website is on these versions of WordPress then it is currently vulnerable to this bug.

Find out today

Contact us and mention your URL to find out if you are affected

 

: FEBRUARY 10, 2017
Starting to see remote command execution (RCE) attempts exploiting the latest WordPress REST API Vulnerability. These RCE attempts started after a few days of defacers rushing to vandalize as many pages as they could.

VICTIMS: publicly visible & already hacked domains
defacer #1 - Google search result of 66,000+ domains - link
defacer #2 - Google search result of 300+ domains - link
defacer #3 - Google search result of 200+ domains - link
defacer #4 - Google search result of 100+ domains - link

: FEBRUARY 22, 2017
We are starting to see a huge increase of remote command execution (RCE) attempts succesfully exploiting the latest WordPress REST API Vulnerability.

VICTIMS: publicly visible & already hacked domains
defacer #1 - Google search result of 365,000+ domains - link
defacer #2 - Google search result of 7,550+ domains - link
defacer #3 - Google search result of 1,720+ domains - link
defacer #4 - Google search result of 368+ domains - link

Identified as New WP under 30 min

Identified as New WP under 30 min

Aug 03 2017

Your freshly installed, brand new WP is discovered faster than you imagine. Amazingly, even before you are informed. Find out how in…

Unable to receive WP emails

Unable to receive WP emails

Aug 02 2017

If you are unable to receive WordPress emails, then there is a chance that your server is hacked to send spam emails…

WP Security: plugin vulnerabilities July

WP Security: plugin vulnerabilities July

Aug 01 2017

For your , be informed about the latest vulnerabilities in WP plugins: WP Statistics SQL injection reported by Sucuri. Exploit allows…

Unable to Login into WordPress

Unable to Login into WordPress

Jul 31 2017

If you are unable to login to your WordPress site, then there is a chance that hackers may have compromised your admin…

Sudden Drop in Website Traffic

Sudden Drop in Website Traffic

Jul 28 2017

If you look at your analytic reports and see a sudden and constantly dropping trend in your website traffic, then it could…

Easy-peasy WordPress Hacking

Easy-peasy WordPress Hacking

Jul 27 2017

Back in 2013, a web publishing company, Interconnect/IT, released a handy tool for finding and replacing text in a website’s database. This…

No comments

Leave a Reply

Your email address will not be published. Required fields are marked *

Target Remote Code Execution

time to read: 2 min
0