It is currently 18-12-2017 10:11

A vulnerability in a popular plugin for WordPress has jeopardized more than a million sites

A vulnerability in a popular plugin for WordPress has jeopardized more than a million sites

by sigismund » 2016-07-13 10:39:42


the Problem allows an unauthorized user to intercept the administrator account.


Independent researcher David Vaartjes (David Vaartjes) reported on a dangerous vulnerability in a popular plugin All In One SEO Pack SEO optimization of the website on the engine WordPress. The problem allows an unauthorized user to intercept the administrator account to the vulnerable resource.

The bug exists in a module Bad Bot Blocker, serving to protect the website from bots and spam. The vulnerability can be proekspluatirovat remotely by sending a specially formed HTTP requests.

Function Bad Bot Blocker is designed to block bots and spam based on the values of User-Agent and Referer. If you have enabled the option "Track blocked bots" (Track Blocked Bots) the plugin will track the requests are being blocked bots and display them on the page in the admin panel. Due to the fact that the plugin is not correctly holds sanitization requests, an attacker can inject malicious JavaScript code into the header of the request. Thus, the offender can perform XSS attack to steal the token sessions and to access the admin panel without authentication.

Developed by All In One SEO Pack company Semper Fi Web Design have released a new fixed version 2.3.7. Experts recommend all users as soon as possible to update current version of the plugin.
sigismund
moderators
Сообщений: 788
Депозит: 0 BTC

Rating: 5