Login

Tag Archives: Settings Change

20 Feb 2024

Settings Change Vulnerability in ThemeIsle SDK

One of the changelog entries for the latest version of the WordPress plugin Super Page Cache for Cloudflare is “Enhanced security.” In looking into that, we found that there was a settings change vulnerability being fixed in the ThemeIsle SDK, which is included in the plugin. That also is included in other plugins, some of which have yet to be updated. We have notified ThemeIsle that several of their plugins have yet to receive the update.

[Read more]

25 Jul 2023

Unfixed Persistent Cross-Site Scripting (XSS) Vulnerability in WordPress Plugin Targeted by Hacker

Today, we had someone probing for usage of the WordPress plugin MultiParcels Shipping For WooCommerce through a request for the plugin’s readme.txt file on one of our websites.

On July 17, a vague claim that an authenticated SQL injection vulnerability had recently been fixed in the plugin was released, which might explain a hacker’s interest in the plugin. There is also a claim that a minor vulnerability that has not been fixed yet exists in the plugin. [Read more]

3 Apr 2023

Settings Change Vulnerability in XML Sitemaps

The latest version of the WordPress plugin XML Sitemaps was flagged by a machine learning based system we have to try to detect if changes made to plugins used by our customers have had vulnerabilities introduced in to them. It wasn’t hard to find a vulnerability being introduced in to the new version of the plugin. The new version introduces a “beta testing program” and code that is supposed to register consent for that lacks any security checks, so anyone access that.

That code is in the function register_consent, which is located in the file /sitemap.php: [Read more]

24 Mar 2023

Settings Change Vulnerability in LiteSpeed Cache

This week Patchstack claimed that a cross-site request forgery (CSRF) vulnerability had been fixed in the WordPress plugin LiteSpeed Cache in December. The changelog for the version it was claimed to have been fixed has a somewhat cryptic mention of fixing a security issue that sounds somewhat different:

[Read more]

31 Jan 2023

Hacker Might Be Exploiting Unfixed Plugin Vulnerability That WPScan, Patchstack, and Wordfence All Claimed Was Fixed

In a now deleted review of the WordPress plugin Beautiful Cookie Consent Banner, someone made the claim that the plugin is insecure and leading to malware:

The plugin is full of malware. Check your source code and run a security check. If you have malware, its this plugin!!! [Read more]

2 Jun 2022

Hacker Targeted WooCommerce Payment Plugin From Openpay Allows Anyone to Change Payee Setting

On Monday we had what appeared to be a hacker probing for usage of the Openpay Payment Gateway plugin (not to be confused with BBVA’s Openpay plugins) for WooCommerce with the following request:

/wp-content/plugins/opy-paymentplugin-woocommerce/README.md [Read more]

22 Feb 2022

WordPress Plugin Targeted by Hacker Currently Contains Settings Change Vulnerability

Last week we had what looked to be a hacker probing for usage of the WordPress plugin Page View Count, which has 20,000+ installs, on our website. While there is a vulnerability that was recently fixed that could explain a hacker targeting the plugin, we did a quick check over the plugin. We found the plugin is lacking basic security and contains at least one vulnerability, a settings change vulnerability. We would recommend not using the plugin unless it has had a thorough security review done and all the issues found addressed.

When the plugin is active, an instance of the class Admin_UI in the file /admin/admin-ui.php is initialized. That causes the __construct() function in the class to be run, which in turn causes the function update_google_map_api_key() in the file to be run: [Read more]