WordPress found few vulnerabilities: Know how to fix them
Team Udayavani, Aug 1, 2021, 12:32 PM IST
Two vulnerabilities have been found in the WordPress plugin that was installed on over 1,00,000 websites. WordPress Download Manager, the plugin is used to change how download pages are displayed.
The Wordfence Threat Intelligence team found the vulnerabilities.
WordPress Download Manager has some protections in place to protect against directory traversal, they did not prove to be sufficient in this particular case, leading to a contributor with lower privileges being able to retrieve the contents of a site’s wp-config.php file by adding a new download and performing a directory traversal attack.
The contents of the wp-config.php were visible in the page’s source code upon previewing the download and as the contents of the file were echoed out onto the page source, a user with author-level access could also upload a file or multimedia containing malicious JavaScript and set the contents of the file to the path of the uploaded file which could result in Stores Cross-Site Scripting.
Earlier, the WordPress Download Manager team had patched a vulnerability that allowed users to upload files with php4 extensions as well as other potentially malicious files. But reports stated that this patch protected many configurations, it only checked the last file extension that made it possible for an attacker to carry out a “double extension” attack by uploading a file with multiple extensions like info.php.png.
Website owners who use WordPress are advised to update to the latest version immediately as the WordPress team and developers have released a patch.
Udayavani is now on Telegram. Click here to join our channel and stay updated with the latest news.
Top News
Related Articles More
Don’t blame Dubai’s freak rain on cloud seeding
ISRO Gears Up to Test Critical Parachute Safety of Gaganyaan
Indian students bag NASA awards for Human Exploration Rover Challenge
‘Mastering the Data Paradox’: Book uncovers pivotal role of data in AI age
Bitcoin’s latest ‘halving’ has arrived. Here’s what you need to know
MUST WATCH
Latest Additions
Tejasvi Surya booked for soliciting votes on grounds of religion: EC
Mangaluru: Island residents use boats to reach polling stations
Stars of Kannada film industry descend to cast votes for LS polls
China says talks on Tibet only with Dalai Lama’s representatives; rules out dialogue on autonomy
Religious harmony threatened by Congress and supporters, claims Adityanath