Scroll Top

WP SECURITY AUG 2021 centralised abuse highlights

By Csaba, Miklós WP Security 21 September 2021

WP SECURITY AUG 2021 CENTRALISED ABUSE HIGHLIGHTS

WP SECURITY AUG 2021 Centralised Abuse Highlights

BRIEF:

Attack vectors seems to be focused on niche business areas, eshop targeting and personal or private data exfiltration. Highly targeted campaign against frameworks to reach multiple tartgets, LMS, payment processing and security plugins. Be informed about the WP SECURITY AUG 2021 centralised abuse highlights. As these specific hacking points and vulnerabilities have a severe negative impact on WordPress Security, consider our FREE security AUDIT.

WARNING:

WP SECURITY AUG 2021 centralised abuse highlights reported significant increases on all segments, compared to July 2022 (previous report), which was already pretty bad.

 

CSRF – Cross-Site Request Forgery 2022

  • WP SECURITY AUG 2021 – It is a -41.5% decrease compared to July 2022. An estimated 275.000+ active WordPress installations were susceptible to CSRF attack types.
  • WP SECURITY JUL 2021 – It is a 253% increase compared to June 2022. An estimated 218.000+ active WordPress installations were susceptible to CSRF attack types.
  • June 2022 – It is a 400% increase compared to May 2022. An estimated 2.174.800+ active WordPress installations were susceptible to CSRF attack types.
  • May 2022 – It is a -76% decrease compared to April 2022. An estimated 30+ active WordPress installations were susceptible to CSRF attack types.
  • April 2022 – It is a -7% decrease compared to March 2022. An estimated 268.000+ active WordPress installations were susceptible to CSRF attack types.
  • March 2022 – It is a 7.68% increase compared to February 2022. An estimated 781.000+ active WordPress installations were susceptible to CSRF attack types.
  • February 2022 – It is a whopping 1200% increase compared to January 2022. An estimated 2.2+ million active WordPress installations were susceptible to CSRF attack types.
  • January 2022 – It is a 75% decrease compared to December 2020. An estimated 40.000+ active WordPress installations were susceptible to CSRF attack types.

XSS – Cross-Site Scripting 2022

  • WP SECURITY AUG 2021 – It is a 94% increase compared to July 2022. An estimated 2.596.000+ active WordPress installations were susceptible to XSS attack types.
  • WP SECURITY JUL 2021 – It is a 79% increase compared to June 2022. An estimated 3.832.000+ active WordPress installations were susceptible to XSS attack types.
  • June 2022 – It is a 59% increase compared to May 2022. An estimated 3.369.200+ active WordPress installations were susceptible to XSS attack types.
  • May 2022 – It is a -48% decrease compared to April 2022. An estimated 2.176.000+ active WordPress installations were susceptible to XSS attack types.
  • April 2022 – It is a 85% increase compared to March 2022. An estimated 9.989.000+ active WordPress installations were susceptible to XSS attack types.
  • March 2022 – It is a 154% increase compared to February 2022. An estimated 6.178.000+ active WordPress installations were susceptible to XSS attack types.
  • February 2022 – It is a 57% increase compared to January 2022. An estimated 2.465.600+ active WordPress installations were susceptible to XSS attack types.
  • January 2022 – It is a 27% increase compared to December 2020. An estimated 1.690.000+ active WordPress installations were susceptible to XSS attack types.

SQL Injections 2022

  • WP SECURITY AUG 2021 – It is a -28% decrease compared to July 2022. An estimated 5.446.000+ active WordPress installations were susceptible to SQL injection attack types.
  • WP SECURITY JUL 2021 – It is a 150% increase compared to June 2022. An estimated 5.346.000+ active WordPress installations were susceptible to SQL injection attack types.
  • June 2022 – It is a 25% increase compared to May 2022. An estimated 317.100+ active WordPress installations were susceptible to SQL injection attack types.
  • May 2022 – It is exactly a similar trend compared to April 2022. An estimated 50.000+ active WordPress installations were susceptible to SQL injection attack types.
  • April 2022 – It is a -83% decrease compared to March 2022. An estimated 50.000+ active WordPress installations were susceptible to SQL injection attack types.
  • March 2022 – It is a 50% increase compared to February 2022. An estimated 210.000+ active WordPress installations were susceptible to SQL injection attack types.
  • February 2022 – It is a 33% increase compared to January 2022. An estimated 211.000+ active WordPress installations were susceptible to SQL injection attack types.
  • January 2022 – It is a 200% increase compared to December 2020. An estimated 623.000+ active WordPress installations were susceptible to SQL injection attack types.

Unrestricted Access Issues 2022

  • WP SECURITY AUG 2021 – It is a -25% decrease compared to July 2022. An estimated 5.844.000+ active WordPress installations were susceptible to security circumvention attack types.
  • WP SECURITY JUL 2021 – It is a 20% increase compared to June 2022. An estimated 1.171.000+ active WordPress installations were susceptible to security circumvention attack types.
  • June 2022 – It is a 16% increase compared to May 2022. An estimated 7.654.600+ active WordPress installations were susceptible to security circumvention attack types.
  • May 2022 – It is a -28% decrease compared to April 2022. An estimated 4.499.000+ active WordPress installations were susceptible to security circumvention attack types.
  • April 2022 – It is a 25% increase compared to March 2022. An estimated 2.630.000+ active WordPress installations were susceptible to security circumvention attack types.
  • March 2022 – It is a 55.5% increase compared to February 2022. An estimated 3.061.000+ active WordPress installations were susceptible to security circumvention attack types.
  • February 2022 – It is a 339% increase compared to January 2022. An estimated 2.169.000+ active WordPress installations were susceptible to security circumvention attack types.
  • January 2022 – It is a 260% increase compared to December 2020. An estimated 493.000+ active WordPress installations were susceptible to security circumvention attack types.

Pharma Hacks 2022

  • WP SECURITY AUG 2021 – It is a 114% increase compared to July 2022. An estimated 10.417.000+ active WordPress installations were susceptible to pharma hack attack types.
  • WP SECURITY JUL 2021 – It is a 163% increase compared to June 2022. An estimated 1.097.000+ active WordPress installations were susceptible to pharma hack attack types.
  • June 2022 – It is a -11% decrease compared to May 2022. An estimated 290.000+ active WordPress installations were susceptible to pharma hack attack types.
  • May 2022 – It is a -43.75% decrease compared to April 2022. An estimated 663.000+ active WordPress installations were susceptible to pharma hack attack types.
  • April 2022 – It is a 14.5% increase compared to March 2022. An estimated 1.340.000+ active WordPress installations were susceptible to pharma hack attack types.
  • March 2022 – It is a 75% increase compared to February 2022. An estimated 504.000+ active WordPress installations were susceptible to pharma hack attack types.
  • February 2022 – It is a similar high trend compared to January 2022. An estimated 1.951.000+ active WordPress installations were susceptible to pharma hack attack types.
  • January 2022 – It is a 60% increase compared to December 2020. An estimated 5.600.000+ active WordPress installations were susceptible to pharma hack attack types.

Sensitive Data Disclosures 2022

  • WP SECURITY AUG 2021 – It is a 20% increase compared to July 2022. An estimated 626.000+ active WordPress installations were susceptible to data exfiltration attack types.
  • WP SECURITY JUL 2021 – It is a 50% increase compared to June 2022. An estimated 807.000+ active WordPress installations were susceptible to data exfiltration attack types.
  • June 2022 – It is a 900% increase compared to May 2022. An estimated 410.000+ active WordPress installations were susceptible to data exfiltration attack types.
  • May 2022 – It is a -85% decrease compared to April 2022. An estimated 200.000+ active WordPress installations were susceptible to data exfiltration attack types.
  • April 2022 – It is a 40% increase compared to March 2022. An estimated 370.000+ active WordPress installations were susceptible to data exfiltration attack types.
  • March 2022 – It is a 28% decrease compared to February 2022. An estimated 113.000+ active WordPress installations were susceptible to data exfiltration attack types.
  • February 2022 – It is a 133% increase compared to January 2022. An estimated 1.121.000+ active WordPress installations were susceptible to data exfiltration attack types.
  • January 2022 – It is a 50% increase compared to December 2020. An estimated 114.000+ active WordPress installations were susceptible to data exfiltration attack types.

WP Core Vulnerability 2022

  • May 2022 – 1 new WP Core Vulnerabilities reported in April. An estimated 41.7% of the ENTIRE INTERNET were susceptible and exposed to publicly reported vulnerability..
  • April 2022 – 2 new WP Core Vulnerabilities reported in April. An estimated 41% of the ENTIRE INTERNET were susceptible and exposed to publicly reported vulnerability..

WP themes vulnerability 2022

  • WP SECURITY JUL 2021 – 6 WP Theme vulnerabilities reported in June. It is exactly a similar trend compared to June 2022.
  • June 2022 – 6 WP Theme vulnerabilities reported in June. It is a -33% decrease compared to May 2022.
  • May 2022 – 9 WP Theme vulnerabilities reported in May. It is a -30% decrease compared to April 2022.
  • April 2022 – 13 WP Theme vulnerabilities reported in April.

Blacklisted/CLOSED WP PLUGINS 2022

  • WP SECURITY AUG 2021 – 64 Blacklisted/CLOSED WP PLUGINS reported in July. It is a 20.7% increase compared to July 2022.
  • WP SECURITY JUL 2021 – 53 Blacklisted/CLOSED WP PLUGINS reported in June. It is a 382% increase compared to June 2022.
  • June 2022 – 11 Blacklisted/CLOSED WP PLUGINS reported in June. It is exactly a similar trend compared to May 2022.
  • May 2022 – 11 Blacklisted/CLOSED WP PLUGINS reported in May.

Protect your WordPress from publicly reported cases of WP SECURITY AUG 2021 BEFORE IT’S TOO LATE! You will also protect your customers, your reputation and your online business!

WP Security

Get Healthy, Stay Healthy! A healthier online business starts today and it begins with you. Hire security experts to solve all your vulnerabilities created from WP SECURITY AUG 2021.

WP Security

Not sure that our recurrent security offer is worthy of long-term consideration? Contact us today for a FREE WordPress Security AUDIT! Decide after you compare RISK + IMPACT versus COST.

Related Posts

KEEP CALM WP
1 WordPress Core Vulnerability in April 2018

For your WordPress protection, be informed about the latest WordPress Core vulnerability IS STILL UNPATCHED since it’s first official report January 29, 2018 or it’s official disclosure date: Monday, February 5, 2018. All versions of WordPress starting with the latest 4.9.5 and below have the Application Denial of Service (DoS)…

15 May 2018
WP CORE VULNERABILITY 2022
WP Core Vulnerability SEP 2022: 20 bug fixes
05 Sep 2022
VULNERABILITY
WordPress Plugin Vulnerabilities FEB 2022 – owl WPS Alarming Report
28 Feb 2022
THEMES VULNERABILITY 2022
Disempowered WP Security: 6 WP themes vulnerability JUL 2021
18 Aug 2021
WP SECURITY
WP Security: 11 plugin vulnerabilities in June 2018

For your WP Security, be informed about the latest vulnerabilities in WordPress plugins: Redirection Authenticated Local File Inclusion reported by Ryan (Dewhurst Security). ACE via file inclusion in Redirection allows admins to execute any PHP file in the filesystem. If you are logged in as an administrator on any site…

03 Jul 2018
WP CORE VULNERABILITY 2022
9 bug fixes in WP Core Vulnerability MAY 2022: Caution
12 May 2022
WP CORE VULNERABILITY 2022
WP Core Vulnerability NOV 2022: 15 bug fixes
01 Nov 2022
THEMES VULNERABILITY 2022
WP Themes vulnerability JAN 2023: 2 premium risks
17 Jan 2023
WP SECURITY
WP Vulnerability JUL 2022 Centralised Abuse Highlights
15 Jul 2022
THEMES VULNERABILITY 2022
Disempowered WP Security: 39 WP themes vulnerability MAR 2022
10 Mar 2022
THEMES VULNERABILITY 2022
Disempowered WP Security: 2 WP themes vulnerability JUL 2022
14 Jul 2022
WP SECURITY
WP Security: plugin vulnerabilities September

For your WP Security, be informed about the latest vulnerabilities in WP plugins: Participants Database Cross site scripting (XSS) reported by Benjamin Lim (https://limbenjamin.com). Exploit allows attackers to inject arbitrary Javascript via the Name parameter. immediately update to version 1.7.5.9 to fix vulnerability Display Widgets Backdoored reported by Jonas Lejon…

01 Oct 2017
VULNERABILITY
WordPress Plugin Vulnerabilities NOV 2022
10 Nov 2022
VULNERABILITY
WordPress Plugin Vulnerabilities JUL 2022 – owl WPS Alarming Report
26 Jul 2022
VULNERABILITY
WordPress Plugin Vulnerabilities JUN 2022 – owl WPS Alarming Report
27 Jun 2022
owlpower.eu
owlpower.eu
owlpower.eu
16+ years of owlsome experience
We're on an empowering mission for website owners, who desire not to be transformed forcefully into IT experts.