Unrestricted Access SEP 2021
Tailored WordPress Security Report
Be informed about the latest Unrestricted Access SEP 2021 – WP Security Circumvention, identified and reported publicly. These breaches create even more problems and vulnerability exploitation with a severe negative impact on any WordPress Security. Consider our FREE security AUDIT.
An jaw-dropping estimated 2.361.000+ active WordPress installations are susceptible to these attack types, considering only the publicly available numbers. The estimated number can double with premium versions as they are private purchases.
Furthermore, the initial estimation can multiply if we consider the already patched versions BUT NOT UPDATED by owners, as the vulnerability remains active within their domain. As these owners start changing their hosting provider (due to constant unexplained issues), they actively migrate these vulnerabilities behind protected areas, possibly exposing other clean WP to different attack types.
It is a mind-boggling 640% increase compared to December 2020. We compare last month versus previous winter holiday season, which has the biggest shopping traffic and attack spike throughout the year. Read more about our previous reports here: 26 Unrestricted Access SEP 2021 – WP Security Circumvention and 5 Unrestricted Access Issues – WordPress Security DEC. The following cases made headlines PUBLICLY just last month in the SQL Injections SEP 2021 category:
Hire security professionals to protect your WordPress from publicly reported cases of Unrestricted Access SEP 2021 BEFORE IT’S TOO LATE! You will also protect your customers, your reputation and your online business!
- Woffice – Unauthenticated Disclosure of Notification Titles
- The Intranet Revolution is Here. Try the #1 WordPress intranet/extranet software today for your Business, Government, Community, School, or any organization! Active installations: N/A
- WP-Board – Unauthenticated SQL Injection
- This plugin has been closed as of May 13, 2022 and is not available for download. Reason: Security Issue.
- Limit Login Attempts – Unauthenticated Stored Cross-Site Scripting
- WordPress Firewall, Advanced SQL Injection, Cross Site Scripting, Remote File Inclusion, Brute Force Login Security, Spam Protection (Anti spam) & Limit Login Attempts for Login Protection, IP Blocking, Database backup, protect site from hacks and malware. Brute Force protection, anti spam & Limit Login Attempts provides Login Security, Registrations Security, Brute Force attacks protection, IP monitoring and IP Blacklisting, strong passwords enforcement. Brute Force login attack can be conducted in number of ways. We provide you enterprise level security, protecting your WP website from hackers and malwares. Active installations: 3,000+
- OMGF – Subscriber+ Arbitrary File/Folder Deletion
- OMGF – Unauthenticated Path Traversal in REST API
- Leverage Browser Cache, Minimize DNS requests, reduce Cumulative Layout Shift and serve your Google Fonts in a 100% GDPR compliant way with OMGF! Active installations: 40,000+
- Podlove Podcast Publisher – Unauthenticated SQL Injection
- We built the Podlove Podcast Publisher because existing solutions are stuck in the past, complex and unwieldy. The Publisher helps you save time, worry less and provides a cutting edge listening experience for your audience. Active installations: 7,000+
- Mail Masta – Unauthenticated Local File Inclusion (LFI)
- This plugin has been closed and is no longer available for download.
- ZoomSounds – WordPress Wave Audio Player with Playlist – Unauthenticated Arbitrary File Download
- ZoomSounds is a complete premium audio plugin for WordPress that allows you to build great audio players and playlists. Engage with your audience with Trending, Likes, and awesome features. Fits your branding with a customizable design and great colors. With nine skins to fit every brand, multiple layouts for the wave skin, only one format required to function, ZoomSounds is the perfect choice for an audio player. Active installations: N/A
- WooCommerce Dynamic Pricing & Discounts – Unauthenticated Settings Import to Stored XSS
- WooCommerce Dynamic Pricing & Discounts – Unauthenticated Settings Export
- WooCommerce Dynamic Pricing & Discounts is an all-purpose pricing and promotion tool for online retailers. Its power lies in its flexibility – loads of pricing methods and conditions can be combined to fit virtually any pricing strategy. Active installations: N/A
- Pinterest Automatic Pin WordPress Plugin – Unauthenticated Arbitrary Options Update
- Pinterest drives more traffic than Google+, YouTube and LinkedIn combined. This is why we have coded this plugin that will pin images from your posts automatically to pinterest.com. Active installations: N/A
- WordPress Automatic Plugin – Unauthenticated Arbitrary Options Update
- WordPress Automatic Plugin posts from almost any website to WordPress automatically. It can import from popular sites like Youtube and Twitter utilizing their APIs or from almost any website of your choice using its scraping modules Active installations: N/A
- SP Rental Manager – Unauthenticated SQL Injection
- This plugin has been closed as of September 7, 2022 and is not available for download. This closure is temporary, pending a full review.
- Poll Maker – Unauthenticated Time Based SQL Injection
- Poll Maker plugin is developed to build awesome polls and conduct interactive elections super easily and quickly. Active installations: 2,000+
- Download from files – Unauthenticated Arbitrary File Upload
- This plugin has been closed as of September 15, 2022 and is not available for download. This closure is permanent.
- Smart Chat for Better Support and Marketing – Multiple Unauthenticated SQL Injections
- Automate your customers’ communication with artificial intelligence-driven bots and a chat system optimized for conversational marketing. Save time, increase revenues, and use the software you already know and love. Active installations: N/A
- Frontend Uploader – Unauthenticated Stored Cross-Site Scripting
- This plugin has been closed as of July 22, 2022 and is not available for download. Reason: Security Issue.
- WP Mega Menu – Subscriber+ Arbitrary Post Access
- WP Mega Menu – Unauthenticated Arbitrary Post Access
- If you have been dreaming of building a stunning mega menu on your WordPress site, our WP Mega Menu plugin is the ultimate solution. You can use Mega Menu for free to create rich and stunning navigation menus for your website. Make menu themes, and customize the styles using drag-and-drop tools. Beautify the menu items with custom colors, fonts, and attributes. Use Mega Menu to build a navigation menu beyond imagination. Active installations: 20,000+
- CherryFramework – Unauthenticated Arbitrary File Upload and Download
- Cherry WordPress Themes have grown to super versatile and fully responsive designs for multiple website categories. They are extremely simple and ready to use just after the installation. Showcase any type of your content or portfolio with Custom Post Types and Post Formats. Active installations: N/A
- WP Job Manager – Phar Deserialization
- WP Job Manager – Unauthenticated Object Injection
- WP Job Manager – Unauthenticated Arbitrary File Upload
- WP Job Manager – Reflected Cross-Site Scripting (XSS)
- WP Job Manager is a lightweight job listing plugin for adding job-board like functionality to your WordPress site. Being shortcode based, it can work with any theme (given a bit of CSS styling) and is really simple to setup. Active installations: 100,000+
- WP Mobile Detector – Unauthenticated Arbitrary File Upload
- This plugin has been closed and is no longer available for download.
- 3DPrint Lite – Unauthenticated Arbitrary File Upload
- If you have a 3D printer and wish to charge for model printing this plugin is for you. Active installations: 600+
- Booster for WooCommerce – Authentication Bypass
- Replace all those WooCommerce plugins with one single plugin that does the job of them all, and then some! Booster combines everything you need to fully customize your site’s functionality into a single WooCommerce bundle, with 110 features and counting. With zero coding needed and easy setup options, Booster makes customization simple for everyone.Active installations: 100+
- MWB Point of Sale (POS) for WooCommerce- Generate Barcodes, Process your Bills, Synchronize, Your Online-Offline Orders – CSRF Bypass / Unauthorised AJAX Call
- This WooCommerce Point of Sale plugin is a powerful foundation for your store that assists you in easy inventory control, barcode generation, contact-free invoicing of orders, counter billings, easy product search/filter, flexible discounts, all over a single page based React JS Webapp offering ultimate customization, attractive UI, and responsive display. Active installations: 10+
- Travelpayouts: All Travel Brands in One Place – CSRF Bypass due to Outdated Redux Framework
- Install our WordPress travel-plugin to your website and help your visitors to find the cheapest flights, hotels, car rentals, tour, etc. Widgets, tables, forms — all of these can be installed in just a few clicks, making your users happy and bringing you a steady income. Active installations: 7,000+
- PostX – Gutenberg Blocks for Post Grid – Private Content Disclosure
- PostX – Gutenberg Blocks for Post Grid – Contributor+ Stored Cross-Site Scripting
- PostX – Gutenberg Blocks for Post Grid – Missing Access Controls
- PostX is a highly customizable Gutenberg Post Block Plugins, anyone can create Post grid blocks, Post Listing Blocks, Post Slider Blocks, News Blocks, Magazine Blocks, And Post Carousel with ease. Active installations: 10,000+
- WP Upload Restriction – Missing Access Control
- WP Upload Restriction – Authenticated Stored XSS
- This plugin allows you to restrict your site users from uploading files of certain types and control the maximum file upload size. Administrator can select the file types and file upload limit by user role. This plugin restricts users from uploading unwanted files using the WordPress media uploader. Active installations: 2,000+
- Simple School Staff Directory – Admin+ Arbitrary File Upload
- This plugin has been closed as of October 24, 2019 and is not available for download. Reason: Guideline Violation.
- Timetable and Event Schedule by MotoPress – Unauthorised Event TimeSlot Deletion
- Timetable and Event Schedule by MotoPress – Unauthorised Event TimeSlot Update
- Timetable and Event Schedule by MotoPress – Arbitrary User’s Hashed Password/Email/Username Disclosure
- Timetable and Event Schedule by MotoPress – Author+ Stored Cross-Site Scripting
- MotoPress Timetable and Event Schedule is an all-around organizer plugin developed to help you create and manage online schedules for a single or multiple events, customize the appearance of each event, add date, time, description and display all the needed items in a carefully-crafted timetable. It also comes with Upcoming events widget that will help you keep the sidebar clutter-free. Active installations: 40,000+
- Find My Blocks – Private Post Titles Disclosure
- Find My Blocks is a WordPress plugin built to help (as it says in the name) find where you have used specific Gutenberg blocks on your WordPress website. Active installations: 1,000+
- Comment Link Remove and Other Comment Tools – Arbitrary Comment Deletion via CSRF
- All in one solution to fight blog comment spammers and improve comment quality. Tired of deleting useless spammy comments from your WordPress blog posts? Comment Link Remove WordPress plugin removes author link and any other links from the user comments. If you run a blog or WordPress website with comments enabled, there is no getting away from comment spammers. Captchas help with bot spamming. But how do you prevent a human who is willing to put in a moment to pass the captcha and write a spam comment just to push a link in your website? Active installations: 10,000+
- Nested Pages – CSRF to Arbitrary Post Deletion and Modification
- Nested Pages – Open Redirect
- Provides a simple & intuitive drag and drop interface for managing your page structure and post ordering. Enhanced quick edit functionality. Adds an editable, sortable tree view of your site’s page structure. Automatically generates a native WordPress menu that matches your page structure. A way to quickly add multiple pages & posts (ideal for development). Works with any post type. Works on touch-enabled devices Active installations: 90,000+
- WordPress Uninstall – WordPress Deletion via CSRF
- This plugin has been closed as of August 30, 2022 and is not available for download. Reason: Security Issue.
- Software License Manager – Stored Cross-Site Scripting
- Software License Manager – Arbitrary Domain Deletion via CSRF
- Software license management solution for your web applications (WordPress plugins, Themes, PHP based membership script etc.) Active installations: 1,000+
- Gutenberg Template Library & Redux Framework – Contributor+ Arbitrary Plugin Installation and Post Deletion
- Supercharge the Gutenberg editor with our ever-growing library of WordPress Blocks and templates. Discover what’s possible and implement any design on your website in virtually no time at all. Active installations: 1+ million
- SEO Redirection Plugin – 301 Redirect Manager – Arbitrary Redirect Deletion via CSRF
- SEO Redirection Plugin – 301 Redirect Manager – Reflected Cross-Site Scripting
- SEO Redirection Plugin – 301 Redirect Manager – Authenticated Stored Cross-Site Scripting (XSS)
- SEO Redirection is a powerful redirect manager to manage 301 redirects, you can build and manage redirects easily for your site, This plugin is useful if you want to migrating pages from an old website, or are changing the directory of your WordPress website. Active installations: 30,000+
- BulletProof Security – Sensitive Information Disclosure
- WordPress Security Protection: Malware scanner, Firewall, Login Security, DB Backup, Anti-Spam… View Security feature highlights below. View BulletProof Security feature details under the FAQ help section below. Effective, Reliable & Easy to use WordPress Security Plugin. Active installations: 50,000+
- Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress – Unprotected REST-API to Sensitive Information Disclosure
- Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress – Unprotected REST-API to Email Injection
- Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress – Stored Cross-Site Scripting
- Use Ninja Forms to create beautiful, user friendly WordPress forms that will make you feel like a professional web developer! Active installations: 1+ million
- Compact WP Audio Player – Setting Change via CSRF
- Compact WP Audio Player – Stored Cross-Site Scripting
- Compact WordPress Audio Player plugin is an HTML5 + Flash hybrid based wordpress plugin which can be used to embed an mp3 audio file on your WordPress post or page using a shortcode. The audio player is cute and compact and will play on all major browsers. Active installations: 40,000+
Get Healthy, Stay Healthy! A healthier online business starts today and it begins with you. Hire security experts to solve all your vulnerabilities created from Unrestricted Access SEP 2021.
BRIEF: Open and Unrestricted Access SEP 2021 to anything within a website is one thing everybody considers to be a total disaster. Many employees have come to rely on the Internet both for work and day-to-day life. As such, they demand unrestricted access at work, and many company bosses have obliged. Without the knowledge to them, however, there may be a risk associated with this.
What is Unauthenticated Insecure Deserialisation?
Insecure Deserialization is a vulnerability which occurs when untrusted data is used to abuse the logic of an application, inflict a denial of service (DoS) attack, or even execute arbitrary code upon it being deserialized. If the function that is responsible for converting serial data into a structured object assumes that the data is trusted, an attacker may format the serial data in such a way that the result of deserialization is malicious. Unfortunately, many standard deserialization functions in programming languages assume that the data is safe.
What is Unauthenticated Backup Download?
The plugin does not restrict access to a BACKUP file containing sensitive information, such as the internal path of backups, which may then allow unauthenticated users to download them.
What is Unrestricted File Upload?
By exploiting this vulnerability, attackers could simply upload files of any type, bypassing all restrictions placed regarding the allowed upload-able file types on a website. By doing this, it allows an attacker to inject malicious content such as web shells into the sites, and providing a method for initial access into the system.
What is Login Rate Limiting Bypass?
When the plugin is configured with a custom header in its Trusted IP Origins setting (e.g X-Forwarded-For), attackers could bypass the protection offered by tampering the header sent in requests. When the plugin is configured to accept an arbitrary header as client source IP address, a malicious user is not limited to perform a brute force attack, because the client IP header accepts any arbitrary string. When randomizing the header input, the login count does never reach the maximum allowed retries.
What is Improper Authorisation Check?
An attacker could leverage these issues to dump the database including administrative user credentials, to steal cookie-based authentication credentials, or launch other attacks. An anonymous user may create a new dive entry with a crafted HTTP POST.
SOLVE TODAY any reported Unrestricted Access SEP 2021 vulnerability! Do you suspect any security circumvention in your WordPress?
