20181214 Vulnerable Plugins/Themes Report
 Share
The version of the browser you are using is no longer supported. Please upgrade to a supported browser.Dismiss

 
View only
 
 
ABCDEFGHIJKLMNOPQRSTUVWXYZAAAB
1
NameVersion(s) AffectedFixed in VersionPlugin DirectoryVulnerabilityLink/Plugin StatusSuggested ActionPlugin/ThemeOther NotesSource
2
Smush Image Compression and Optimization
2.9.1 and earlier3.0.0wp-smushitCross-Site Scriptinghttps://wordpress.org/plugins/wp-smushit/UpdatePlugin
Author mentions a disclosing a XSS issue to the author in addition to the deserialization issue, but doesn't give any specifics on the XSS vulnerability
https://www.ripstech.com/php-security-calendar-2018/ day 8
3
Smush Image Compression and Optimization
2.9.1 and earlier3.0.0wp-smushitAuthenticated Phar Deserializationhttps://wordpress.org/plugins/wp-smushit/UpdatePlugin
https://www.ripstech.com/php-security-calendar-2018/ day 9
4
Contact Form by WPForms1.4.7 and earlier1.4.8wpforms-liteCross-Site Scriptinghttps://wordpress.org/plugins/wpforms-lite/UpdatePlugin
This was disclosed to the author at the same time as last week's Authenticated Stored XSS vulnerability, so if you already updated from last week, you're protected
https://www.ripstech.com/php-security-calendar-2018/ day 9
5
WooCommerce3.4.5 and earlier3.4.6woocommerceAuthenticated Arbitrary File Downloadhttps://wordpress.org/plugins/woocommerce/UpdatePlugin
Similar to the smush disclosure, this issue was disclosed to the author previously and fixed in version 3.4.6. If you already updated from the previous disclosure, you're covered.
https://www.ripstech.com/php-security-calendar-2018/ day 10
6
WooCommerce3.5.0 and earlier3.5.1woocommercePrivilege escalationhttps://wordpress.org/plugins/woocommerce/UpdatePlugin
Requires a user to have a Shop Manager role or higher
https://www.ripstech.com/php-security-calendar-2018/ day 13
7
Jetpack6.4.2 and earlier6.5jetpackAuthenticated Stored Cross-Site Scriptinghttps://wordpress.org/plugins/jetpack/UpdatePlugin
https://www.ripstech.com/php-security-calendar-2018/ day 11
8
Mailchimp4.3.1 and earlier4.1.7mailchimp-for-wpCross-Site Scriptinghttps://wordpress.org/plugins/mailchimp-for-wp/UpdatePlugin
https://www.ripstech.com/php-security-calendar-2018/ day 12
9
All in One WP Security & Firewallall, see notesunfixedall-in-one-wp-security-and-firewallPhar Deserializationhttps://wordpress.org/plugins/all-in-one-wp-security-and-firewall/
Use with caution, see notes
Plugin
Requires an administrator account to exploit. An administrator already has full access to the site, but this vulnerability could allow the attacker to bypass other hardening measures on the system. Researcher does not indicate how far back the vulnerability was introduced. Assume all versions are affected
https://www.ripstech.com/php-security-calendar-2018/ day 14
10
Import Users from CSV with meta1.12 and earlier1.12.1import-users-from-csv-with-metaCross-Site Scriptinghttps://wordpress.org/plugins/import-users-from-csv-with-meta/UpdatePlugin
https://wpvulndb.com/vulnerabilities/9176
11
Advanced Custom Fields (includes Pro)5.7.7 and earlier5.7.8advanced-custom-fieldsAuthenticated Stored Cross-Site Scriptinghttps://wordpress.org/plugins/advanced-custom-fields/UpdatePlugin
https://www.advancedcustomfields.com/blog/acf-5-7-8-release/
12
Orbit Fox by ThemeIsle2.6.3 and earlier2.6.4themeisle-companionREST Authenication Bypasshttps://wordpress.org/plugins/themeisle-companion/UpdatePlugin
https://wpvulndb.com/vulnerabilities/9167
13
wp-autosuggestall, see notesunfixedwp-autosuggestSQL Injectionhttps://wordpress.org/plugins/wp-autosuggest/RemovePlugin
This plugin hasn't been updated in 10 years so it will most likely not be updated
https://packetstormsecurity.com/files/150762/wpautosuggest024-sql.txt
14
Ajax Store Locatorall, see notesunfixed
codecanyon-5293356-ajax-store-locator-wordpress
Arbitrary File Download
https://themesinfo.com/wordpress-plugins/wordpress-codecanyon-5293356-ajax-store-locator-wordpress-plugin-dn4k
RemovePlugin
It's a paid plugin so I don't have the source. Last update was in 2013 so assume all versions are affected, and assume it will not be updated.
https://packetstormsecurity.com/files/150727/wpcc5293356120-xss.txt
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
Loading...
Main menu