CVE-2024-6297

Several WordPress.org Plugins <= Various Versions - Injected Backdoor

CVSS 10 CRITICALEPSS 1.0%

Several plugins for WordPress hosted on WordPress.org have been compromised and injected with malicious PHP scripts. A malicious threat actor compromised the source code of various plugins and injected code that exfiltrates database credentials and is used to create new, malicious, administrator users and send that data back to a server. Currently, not all plugins have been patched and we strongly recommend uninstalling the plugins for the time being and running a complete malware scan.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Productos afectados

blazeretail · BLAZE Retail Widget pedrogusmao02 · Wrapper Link Elementor stuartobrien · Simply Show Hooks themerex · Contact Form 7 Multi-Step Addon warfareplugins · Social Sharing Plugin – Social Warfare

PoCs públicas encontradas — 1

githubgithub.com/Sudo-WP/sudowp-hooks-visualizer★ 2

⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias