Thursday, 25 May 2023

Critical Bug Found In WordPress Plugin For Elementor With Over A Million Installations

 


A WordPress plugin with over one million installs has been found to contain a critical vulnerability that could result in the execution of arbitrary code on compromised websites.

The plugin in question is Essential Addons for Elementor, which provides WordPress site owners with a library of over 80 elements and extensions to help design and customize pages and posts.

"This vulnerability allows any user, regardless of their authentication or authorization status, to perform a local file inclusion attack," Patchstack said in a report. "This attack can be used to include local files on the filesystem of the website, such as /etc/passwd. This can also be used to perform RCE by including a file with malicious PHP code that normally cannot be executed."

That said, the vulnerability only exists if widgets like dynamic gallery and product gallery are used, which utilize the vulnerable function, resulting in local file inclusion – an attack technique in which a web application is tricked into exposing or running arbitrary files on the webserver.

The flaw impacts all versions of the addon from 5.0.4 and below, and credited with discovering the vulnerability is researcher Wai Yan Myo Thet. Following responsible disclosure, the security hole was finally plugged in version 5.0.5 released on January 28 "after several insufficient patches."

The development comes weeks after it emerged that unidentified actors tampered with dozens of WordPress themes and plugins hosted on a developer's website to inject a backdoor with the goal of infecting further sites.

Continue reading


  1. Hacking Tools Github
  2. Pentest Box Tools Download
  3. Hacker Tools Apk Download
  4. Hacks And Tools
  5. Hack Tools Github
  6. Ethical Hacker Tools
  7. Hacker
  8. Hack Tools Online
  9. Pentest Tools Open Source
  10. Hacking Tools Windows
  11. Beginner Hacker Tools
  12. Hacker Tools Software
  13. Hack Tools For Games
  14. Pentest Tools Subdomain
  15. Hacking Tools 2019
  16. Android Hack Tools Github
  17. Physical Pentest Tools
  18. Tools 4 Hack
  19. Pentest Tools Linux
  20. World No 1 Hacker Software
  21. Hack Tool Apk No Root
  22. Nsa Hacker Tools
  23. Hacker Techniques Tools And Incident Handling
  24. Hacking App
  25. Pentest Tools Review
  26. Hacker Tools For Windows
  27. Hacking Tools Pc
  28. Pentest Tools Kali Linux
  29. Game Hacking
  30. Pentest Tools Nmap
  31. Hacking Tools For Windows
  32. Hacking Tools Pc
  33. Kik Hack Tools
  34. Hacking Tools Online
  35. Pentest Tools Linux
  36. Pentest Tools Nmap
  37. Black Hat Hacker Tools
  38. Pentest Tools For Android
  39. Hacking Apps
  40. Hacking Tools Free Download
  41. Hacker Tools 2020
  42. Hacker Tool Kit
  43. Hacking Tools 2020
  44. Hacking Tools For Windows 7
  45. Hacking Tools Github
  46. Ethical Hacker Tools
  47. Hack Tools For Mac
  48. What Are Hacking Tools
  49. Hacking Tools Download
  50. Hacker Tools Apk Download
  51. Best Pentesting Tools 2018
  52. Hacker Search Tools
  53. Blackhat Hacker Tools
  54. Bluetooth Hacking Tools Kali
  55. Hack Rom Tools
  56. Install Pentest Tools Ubuntu
  57. Termux Hacking Tools 2019
  58. Hacker Tools Apk
  59. Hacking Tools Mac
  60. Ethical Hacker Tools
  61. New Hacker Tools
  62. Hacker Tools Free
  63. Hacking Tools Pc
  64. Hack Apps
  65. Tools For Hacker
  66. Hacking Tools Hardware
  67. Hacker Tools Linux
  68. Kik Hack Tools
  69. Hack And Tools
  70. Pentest Tools List
  71. New Hacker Tools
  72. Beginner Hacker Tools
  73. Pentest Tools Subdomain
  74. Hacking App
  75. Hacker Tool Kit
  76. Hack Tools For Games
  77. Pentest Tools For Ubuntu
  78. Ethical Hacker Tools
  79. Hack Tools For Games
  80. Hack Tools For Ubuntu
  81. Pentest Tools Linux
  82. Hacking Tools Online
  83. Physical Pentest Tools
  84. Bluetooth Hacking Tools Kali
  85. Hack Tools
  86. Ethical Hacker Tools
  87. Hack Tools 2019
  88. Hacking Apps
  89. How To Hack
  90. Computer Hacker
  91. Hacker Tools List
  92. Hak5 Tools
  93. Pentest Tools
  94. Hack Tools Pc
  95. Hack Tools For Windows
  96. Hacker Tools Hardware
  97. Pentest Tools Website
  98. Tools Used For Hacking
  99. Hacking Tools For Beginners
  100. Hacking Tools For Games
  101. Easy Hack Tools
  102. Easy Hack Tools
  103. Pentest Tools Review
  104. Hacker Tools Hardware
  105. Hacker Tools Hardware
  106. Hacker Tools Hardware
  107. Hack Tool Apk
  108. Pentest Tools Review
  109. Pentest Tools Url Fuzzer
  110. Hacker Tools For Ios
  111. Hacking Tools Software
  112. Install Pentest Tools Ubuntu
  113. Hack Tools Pc
  114. Hack Tool Apk
  115. Pentest Tools Linux
  116. Pentest Tools Android
  117. Game Hacking
  118. Pentest Tools Framework
  119. Install Pentest Tools Ubuntu
  120. Pentest Tools Free
  121. Hack Tools Github
  122. Pentest Tools Windows
  123. How To Install Pentest Tools In Ubuntu
  124. Hacking Tools Mac
  125. Best Hacking Tools 2019
  126. Hack Tools Download
  127. How To Install Pentest Tools In Ubuntu
  128. Hacker Techniques Tools And Incident Handling
  129. New Hacker Tools
  130. Beginner Hacker Tools
  131. Hacker Tools 2019
  132. Pentest Tools For Ubuntu
  133. Hack Tool Apk
  134. Pentest Tools For Windows
  135. Nsa Hack Tools Download
  136. Hacking Tools 2020
  137. Hacker Tools Mac
  138. Hack Tools Mac
  139. Pentest Tools For Ubuntu
  140. New Hacker Tools
  141. Ethical Hacker Tools
  142. Hacker Tools For Mac
  143. Hacking App
  144. Pentest Tools For Android
  145. Pentest Tools Website
  146. Nsa Hack Tools Download
  147. Best Pentesting Tools 2018
  148. Pentest Tools Android
  149. Pentest Tools Open Source
  150. Pentest Tools Kali Linux
  151. Pentest Tools For Windows
  152. Hacking Tools Software
  153. Pentest Tools Tcp Port Scanner
  154. Ethical Hacker Tools
  155. Pentest Tools Website Vulnerability
  156. Pentest Automation Tools
  157. Wifi Hacker Tools For Windows
  158. Pentest Tools Port Scanner
  159. Hacker Hardware Tools
  160. Hack Tool Apk
  161. Tools 4 Hack
  162. Pentest Tools Open Source
  163. Black Hat Hacker Tools
  164. Hack Tool Apk
  165. What Is Hacking Tools
  166. Hacking Tools For Games
  167. Blackhat Hacker Tools
  168. Github Hacking Tools
  169. Nsa Hacker Tools
  170. World No 1 Hacker Software
  171. Hacker Tools Free Download
  172. Android Hack Tools Github
  173. How To Make Hacking Tools
  174. Free Pentest Tools For Windows
  175. Pentest Tools Port Scanner
  176. Pentest Tools List
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)