This Week’s Watch Out Wednesday shows the latest WordPress vulnerabilities including Redirect Redirection, Enhanced Text Widget, Ultimate Posts Widget more!
Plugin: Bit Assist
Vulnerability: Admin+ Stored Cross-Site Scripting vulnerability
Patched Version: 1.1.9
Recommended Action: Update the WordPress Bit Assist plugin to the latest available version (at least 1.1.9).
Plugin: Ultimate Posts Widget
Vulnerability: Missing Authorization on handle_installation function vulnerability
Patched Version: 2.2.5
Recommended Action: Update the WordPress Ultimate Posts Widget plugin to the latest available version (at least 2.2.5).
Plugin: SSL Mixed Content Fix
Vulnerability: Missing Authorization on handle_installation function vulnerability
Patched Version: 3.2.4
Recommended Action: Update the WordPress SSL Mixed Content Fix plugin to the latest available version (at least 3.2.4).
Plugin: Social Share Icons & Social Share Buttons
Vulnerability: Missing Authorization on handle_installation function vulnerability
Patched Version: 3.5.8
Recommended Action: Update the WordPress Social Share Icons & Social Share Buttons plugin to the latest available version (at least 3.5.8).
Plugin: Social Media & Share Icons
Vulnerability: Missing Authorization on handle_installation function vulnerability
Patched Version: 2.8.2
Recommended Action: Update the WordPress Social Media & Share Icons plugin to the latest available version (at least 2.8.2).
Plugin: RSS Redirect & Feedburner Alternative
Vulnerability: Missing Authorization on handle_installation function vulnerability
Patched Version: 3.8
Recommended Action: Update the WordPress RSS Redirect & Feedburner Alternative plugin to the latest available version (at least 3.8).
Plugin: Redirect Redirection
Vulnerability: Missing Authorization on handle_installation function vulnerability
Patched Version: 1.1.4
Recommended Action: Update the WordPress Redirect Redirection plugin to the latest available version (at least 1.1.4).
Plugin: Pop-up
Vulnerability: Missing Authorization on handle_installation function vulnerability
Patched Version: 1.2.0
Recommended Action: Update the WordPress Pop-up plugin to the latest available version (at least 1.2.0).
Plugin: Enhanced Text Widget
Vulnerability: Missing Authorization on handle_installation function vulnerability
Patched Version: 1.5.8
Recommended Action: Update the WordPress Enhanced Text Widget plugin to the latest available version (at least 1.5.8).
Plugin: Duplicate Post
Vulnerability: Missing Authorization on handle_installation function vulnerability
Patched Version: 1.4.0
Recommended Action: Update the WordPress Duplicate Post plugin to the latest available version (at least 1.4.0).
Plugin: Clone
Vulnerability: Missing Authorization on handle_installation function vulnerability
Patched Version: 2.3.8
Recommended Action: Update the WordPress Clone plugin to the latest available version (at least 2.3.8).
Plugin: Backup Migration
Vulnerability: Missing Authorization on handle_installation function vulnerability
Patched Version: 1.2.8
Recommended Action: Update the WordPress Backup Migration plugin to the latest available version (at least 1.2.8).
Plugin: Ultimate Posts Widget
Vulnerability: Cross-Site Request Forgery on handle_installation function vulnerability
Patched Version: 2.2.5
Recommended Action: Update the WordPress Ultimate Posts Widget plugin to the latest available version (at least 2.2.5).
Plugin: SSL Mixed Content Fix
Vulnerability: Cross-Site Request Forgery on handle_installation function vulnerability
Patched Version: 3.2.4
Recommended Action: Update the WordPress SSL Mixed Content Fix plugin to the latest available version (at least 3.2.4).
Plugin: Social Share Icons & Social Share Buttons
Vulnerability: Cross-Site Request Forgery on handle_installation function vulnerability
Patched Version: 3.5.8
Recommended Action: Update the WordPress Social Share Icons & Social Share Buttons plugin to the latest available version (at least 3.5.8).
Plugin: Social Media & Share Icons
Vulnerability: Cross-Site Request Forgery on handle_installation function vulnerability
Patched Version: 2.8.2
Recommended Action: Update the WordPress Social Media & Share Icons plugin to the latest available version (at least 2.8.2).
Plugin: RSS Redirect & Feedburner Alternative
Vulnerability: Cross-Site Request Forgery on handle_installation function vulnerability
Patched Version: 3.8
Recommended Action: Update the WordPress RSS Redirect & Feedburner Alternative plugin to the latest available version (at least 3.8).
Plugin: Redirect Redirection
Vulnerability: Cross-Site Request Forgery on handle_installation function vulnerability
Patched Version: 1.1.4
Recommended Action: Update the WordPress Redirect Redirection plugin to the latest available version (at least 1.1.4).
0 Comments