Watch Out Wednesday – September 6, 2023

Home » Watch Out Wednesday – September 6, 2023

Understanding Vulnerabilities in WordPress Plugins

Every week, we highlight known vulnerabilities in WordPress plugins. This information helps you stay informed about potential risks and take appropriate action to protect your website. By addressing these vulnerabilities, you ensure the safety and integrity of your WordPress site and its data.

Plugin: Backup Migration

Vulnerability: Cross-Site Request Forgery
Patched Version: 1.3.0
Recommended Action: Update to version 1.3.0, or a newer patched version

Plugin: Media Library Assistant

Vulnerability: Unauthenticated Local/Remote File Inclusion & Remote Code Execution
Patched Version: 3.10
Recommended Action: Update to version 3.10, or a newer patched version

Plugin: Login and Logout Redirect

Vulnerability: Open Redirect
Patched Version: No patched version available
Recommended Action: No known patch available. Please review the vulnerability’s details in depth and employ mitigations based on your organization’s risk tolerance. It may be best to uninstall the affected software and find a replacement.

Plugin: Automatic YouTube Gallery

Vulnerability: Missing Authorization via AJAX actions
Patched Version: 2.3.5
Recommended Action: Update to version 2.3.5, or a newer patched version

Plugin: Social Share, Social Login and Social Comments Plugin – Super Socializer

Vulnerability: Missing Authorization
Patched Version: 7.13.55
Recommended Action: Update to version 7.13.55, or a newer patched version

Plugin: FileOrganizer – Manage WordPress and Website Files

Vulnerability: Authenticated (Admin+) Arbitrary File Access
Patched Version: 1.0.4
Recommended Action: Update to version 1.0.4, or a newer patched version

Plugin: Auto Amazon Links – Amazon Associates Affiliate Plugin

Vulnerability: Authenticated (Contributor+) Stored Cross-Site Scripting via style
Patched Version: 5.3.2
Recommended Action: Update to version 5.3.2, or a newer patched version

Plugin: Laposta Signup Embed

Vulnerability: Missing Authorization
Patched Version: 1.1.1
Recommended Action: Update to version 1.1.1, or a newer patched version

Plugin: UniConsent CMP for IAB TCF GPP Consent Mode

Vulnerability: Authenticated (Administrator+) Stored Cross-Site Scripting
Patched Version: 1.4.4
Recommended Action: Update to version 1.4.4, or a newer patched version

Plugin: User Private Files – File Upload & Download Manager with Secure File Sharing

Vulnerability: Authenticated (Admin+) Stored Cross-Site Scripting
Patched Version: 2.0.4
Recommended Action: Update to version 2.0.4, or a newer patched version

Plugin: Stock Quotes List

Vulnerability: Authenticated (Contributor+) Stored Cross-Site Scripting
Patched Version: 2.9.12
Recommended Action: Update to version 2.9.12, or a newer patched version

Plugin: Goods Catalog

Vulnerability: Authenticated (Contributor+) Stored Cross-Site Scripting
Patched Version: No patched version available
Recommended Action: No known patch available. Please review the vulnerability’s details in depth and employ mitigations based on your organization’s risk tolerance. It may be best to uninstall the affected software and find a replacement.

Plugin: GiveWP – Donation Plugin and Fundraising Platform

Vulnerability: Donation Plugin <= 2.33.0
Patched Version: 2.33.1
Recommended Action: Update to version 2.33.1, or a newer patched version

Plugin: Easy Newsletter Signups

Vulnerability: Missing Authorization
Patched Version: No patched version available
Recommended Action: No known patch available. Please review the vulnerability’s details in depth and employ mitigations based on your organization’s risk tolerance. It may be best to uninstall the affected software and find a replacement.

Plugin: Sunshine Photo Cart: Free Client Photo Galleries for Photographers

Vulnerability: Insecure Direct Object Reference to Order Manipulation
Patched Version: 3.0
Recommended Action: Update to version 3.0, or a newer patched version

Plugin: MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for Elementor

Vulnerability: Authenticated (Subscriber+) Information Disclosure via ‘mf_first_name’ shortcode
Patched Version: 3.3.2
Recommended Action: Update to version 3.3.2, or a newer patched version

Plugin: CP Blocks

Vulnerability: Cross-Site Request Forgery to Settings Update
Patched Version: 1.0.21
Recommended Action: Update to version 1.0.21, or a newer patched version

Plugin: Leadster

Vulnerability: Cross-Site Request Forgery
Patched Version: 1.1.3
Recommended Action: Update to version 1.1.3, or a newer patched version

Plugin: TelSender – Wp to telegram СF 7, Events, Wpforms, Ninja forms, Wooccommerce

Vulnerability: Missing Authorization
Patched Version: 1.14.12
Recommended Action: Update to version 1.14.12, or a newer patched version

Plugin: Responsive Gallery Grid

Vulnerability: Cross-Site Request Forgery
Patched Version: 2.3.14
Recommended Action: Update to version 2.3.14, or a newer patched version

Plugin: Live News – Responsive News Ticker

Vulnerability: Cross-Site Request Forgery
Patched Version: 1.07
Recommended Action: Update to version 1.07, or a newer patched version

Plugin: Travel Map

Vulnerability: Unauthenticated Cross-Site Scripting
Patched Version: 1.0.2
Recommended Action: Update to version 1.0.2, or a newer patched version

Plugin: Insert Estimated Reading Time

Vulnerability: Authenticated (Administrator+) Stored Cross-Site Scripting
Patched Version: No patched version available
Recommended Action: No known patch available. Please review the vulnerability’s details in depth and employ mitigations based on your organization’s risk tolerance. It may be best to uninstall the affected software and find a replacement.

Plugin: WP Gallery Metabox

Vulnerability: Cross-Site Request Forgery
Patched Version: No patched version available
Recommended Action: No known patch available. Please review the vulnerability’s details in depth and employ mitigations based on your organization’s risk tolerance. It may be best to uninstall the affected software and find a replacement.

Plugin: Cookie Notice & Consent

Vulnerability: Authenticated (Administrator+) Stored Cross-Site Scripting
Patched Version: 1.6.1
Recommended Action: Update to version 1.6.1, or a newer patched version

Plugin: Smarty for WordPress

Plugin: wpCentral

Plugin: Tilda-publishing

Vulnerability: Missing Authorization
Patched Version: 0.3.24
Recommended Action: Update to version 0.3.24, or a newer patched version

Plugin: Laposta Signup Embed

Vulnerability: Cross-Site Request Forgery
Patched Version: 1.1.1
Recommended Action: Update to version 1.1.1, or a newer patched version

Plugin: POEditor

Vulnerability: Cross-Site Request Forgery
Patched Version: 0.9.5
Recommended Action: Update to version 0.9.5, or a newer patched version

Plugin: Carousel Slider

Vulnerability: Missing Authorization
Patched Version: 2.2.3
Recommended Action: Update to version 2.2.3, or a newer patched version

Plugin: Ovic Product Bundle

Plugin: SIS Handball

Plugin: Better Elementor Addons

Vulnerability: Missing Authorization
Patched Version: 1.3.9
Recommended Action: Update to version 1.3.9, or a newer patched version

Plugin: authLdap

Vulnerability: Authenticated (Administrator+) Stored Cross-Site Scripting
Patched Version: 2.6.2
Recommended Action: Update to version 2.6.2, or a newer patched version

Plugin: Sermon'e – Sermons Online

Vulnerability: Reflected Cross-Site Scripting
Patched Version: No patched version available
Recommended Action: No known patch available. Please review the vulnerability’s details in depth and employ mitigations based on your organization’s risk tolerance. It may be best to uninstall the affected software and find a replacement.

Plugin: Fast & Effective Popups & Lead-Generation for WordPress – HollerBox

Vulnerability: Authenticated (Administrator+) Stored Cross-Site Scripting
Patched Version: 2.3.3
Recommended Action: Update to version 2.3.3, or a newer patched version

Plugin: Bulk NoIndex & NoFollow Toolkit

Vulnerability: Missing Authorization
Patched Version: 1.51
Recommended Action: Update to version 1.51, or a newer patched version

Plugin: SendPress Newsletters

Plugin: rtMedia for WordPress, BuddyPress and bbPress

Vulnerability: Missing Authorization to Settings Update
Patched Version: 4.6.15
Recommended Action: Update to version 4.6.15, or a newer patched version

Plugin: WP Directory Kit

Vulnerability: Missing Authorization
Patched Version: 1.2.7
Recommended Action: Update to version 1.2.7, or a newer patched version

Plugin: WP-dTree

Plugin: Restrict – membership, site, content and user access restrictions for WordPress

Vulnerability: Reflected Cross-Site Scripting
Patched Version: 2.2.5
Recommended Action: Update to version 2.2.5, or a newer patched version

Plugin: RSVPMaker

Vulnerability: Unauthenticated PHP Object Injection
Patched Version: 10.6.7
Recommended Action: Update to version 10.6.7, or a newer patched version

Plugin: Swifty Bar, sticky bar by WPGens

Vulnerability: Authenticated (Administrator+) Stored Cross-Site Scripting
Patched Version: 1.2.11
Recommended Action: Update to version 1.2.11, or a newer patched version

Plugin: WooCommerce PensoPay

Vulnerability: Reflected Cross-Site Scripting via ‘pensopay_action’
Patched Version: 6.3.2
Recommended Action: Update to version 6.3.2, or a newer patched version

Plugin: Rescue Shortcodes

Vulnerability: Authenticated (Contributor+) Stored Cross-Site Scripting
Patched Version: 2.6
Recommended Action: Update to version 2.6, or a newer patched version

Plugin: WP-dTree

Plugin: Starter Templates — Elementor, WordPress & Beaver Builder Templates

Vulnerability: Authenticated (Contributor+) Server-Side Request Forgery
Patched Version: 3.2.5
Recommended Action: Update to version 3.2.5, or a newer patched version

Plugin: wordpress publish post email notification

Vulnerability: Authenticated (Administrator+) Stored Cross-Site Scripting
Patched Version: 1.0.2.3
Recommended Action: Update to version 1.0.2.3, or a newer patched version

Plugin: Realbig For WordPress

Vulnerability: Cross-Site Request Forgery
Patched Version: 1.0.7
Recommended Action: Update to version 1.0.7, or a newer patched version

Plugin: Order Delivery Date for WP e-Commerce

Plugin: Email posts to subscribers

Vulnerability: Missing Authorization to Sensitive Information Exposure
Patched Version: No patched version available
Recommended Action: No known patch available. Please review the vulnerability’s details in depth and employ mitigations based on your organization’s risk tolerance. It may be best to uninstall the affected software and find a replacement.

Plugin: WP Project Manager – Task, team, and project management plugin featuring kanban board and gantt charts

Vulnerability: Authenticated (Subscriber+) SQL Injection
Patched Version: 2.6.1
Recommended Action: Update to version 2.6.1, or a newer patched version

Plugin: Click To Tweet

Plugin: Woocommerce Support System

Vulnerability: Missing Authorization
Patched Version: 1.2.3
Recommended Action: Update to version 1.2.3, or a newer patched version

Plugin: WRC Pricing Tables – Responsive CSS3 Pricing Tables

Vulnerability: Missing Authorization
Patched Version: 2.3.8
Recommended Action: Update to version 2.3.8, or a newer patched version

Plugin: WiserNotify Social Proof & FOMO Notification, WooCommerce Sales Popup, Review Popups, Notification Bars & Urgency Widgets

Vulnerability: Missing Authorization
Patched Version: 2.6
Recommended Action: Update to version 2.6, or a newer patched version

Plugin: All-in-One WP Migration Dropbox Extension

Vulnerability: Missing Authorization to Access Token Update
Patched Version: 3.76
Recommended Action: Update to version 3.76, or a newer patched version

Plugin: Outbound Link Manager

Plugin: Analytify – Google Analytics Dashboard For WordPress (GA4 analytics made easy)

Vulnerability: Missing Authorization to Opt-In
Patched Version: 5.1.1
Recommended Action: Update to version 5.1.1, or a newer patched version

Plugin: Simple 301 Redirects By BetterLinks – Easy Redirect Manager for WP, 404 Error Log & More

Vulnerability: Cross-Site Request Forgery via ‘clicked’
Patched Version: 2.0.8
Recommended Action: Update to version 2.0.8, or a newer patched version

Plugin: AcyMailing – An Ultimate Newsletter Plugin and Marketing Automation Solution for WordPress

Vulnerability: Reflected Cross-Site Scripting
Patched Version: 8.6.3
Recommended Action: Update to version 8.6.3, or a newer patched version

Plugin: All in One B2B for WooCommerce

Vulnerability: Unauthenticated Privilege Escalation
Patched Version: No patched version available
Recommended Action: No known patch available. Please review the vulnerability’s details in depth and employ mitigations based on your organization’s risk tolerance. It may be best to uninstall the affected software and find a replacement.

Plugin: Directorist: AI-Powered WordPress Business Directory Plugin with Classified Ads Listings

Vulnerability: CSV Injection
Patched Version: 7.7.2
Recommended Action: Update to version 7.7.2, or a newer patched version

Plugin: WordPress Classifieds Plugin – Ad Directory & Listings by AWP Classifieds

Vulnerability: Cross-Site Request Forgery
Patched Version: 4.3.1
Recommended Action: Update to version 4.3.1, or a newer patched version

Plugin: Click To Tweet

Plugin: Use Memcached

Plugin: WP Custom Post Template

Plugin: Laposta Signup Basic

Vulnerability: Missing Authorization
Patched Version: 1.4.2
Recommended Action: Update to version 1.4.2, or a newer patched version

Plugin: WP Accessibility Helper (WAH)

Vulnerability: Missing Authorization via AJAX action
Patched Version: 0.6.2.5
Recommended Action: Update to version 0.6.2.5, or a newer patched version

Plugin: WordPress Social Login

Vulnerability: Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode
Patched Version: No patched version available
Recommended Action: No known patch available. Please review the vulnerability’s details in depth and employ mitigations based on your organization’s risk tolerance. It may be best to uninstall the affected software and find a replacement.

Plugin: Hide admin notices – Admin Notification Center

Vulnerability: Cross-Site Request Forgery
Patched Version: 2.3.3
Recommended Action: Update to version 2.3.3, or a newer patched version

Plugin: WP iCal Availability

Plugin: Social Share, Social Login and Social Comments Plugin – Super Socializer

Vulnerability: Cross-Site Request Forgery
Patched Version: 7.13.55
Recommended Action: Update to version 7.13.55, or a newer patched version

Plugin: All in One B2B for WooCommerce

Plugin: rtMedia for WordPress, BuddyPress and bbPress

Vulnerability: Missing Authorization to Sensitive Information Exposure
Patched Version: 4.6.15
Recommended Action: Update to version 4.6.15, or a newer patched version

Plugin: Surfer – WordPress Plugin

Vulnerability: Missing Authorization
Patched Version: 1.3.3.379
Recommended Action: Update to version 1.3.3.379, or a newer patched version

Plugin: SAML Single Sign On – SSO Login Standard

Vulnerability: Missing Authorization to notice dismissal
Patched Version: 5.0.5
Recommended Action: Update to version 5.0.5, or a newer patched version

Plugin: Easy WP Cleaner

Vulnerability: Cross-Site Request Forgery
Patched Version: 2.0
Recommended Action: Update to version 2.0, or a newer patched version

Plugin: PeproDev CF7 Database

Vulnerability: Unauthenticated Stored Cross-Site Scripting via form submission
Patched Version: 1.8.0
Recommended Action: Update to version 1.8.0, or a newer patched version

Plugin: StagTools

Vulnerability: Reflected Cross-Site Scripting
Patched Version: 2.3.8
Recommended Action: Update to version 2.3.8, or a newer patched version

Plugin: Remove/hide Author, Date, Category Like Entry-Meta

Plugin: WP Crowdfunding

Vulnerability: Missing Authorization via settings_reset
Patched Version: 2.1.5
Recommended Action: Update to version 2.1.5, or a newer patched version

Plugin: Laposta Signup Basic

Vulnerability: Cross-Site Request Forgery
Patched Version: 1.4.2
Recommended Action: Update to version 1.4.2, or a newer patched version

Plugin: iFolders – Ultimate Folder Organizer for Media Library, Pages, Posts and Users

Vulnerability: Authenticated (Administrator+) Stored Cross-Site Scripting
Patched Version: 1.5.1
Recommended Action: Update to version 1.5.1, or a newer patched version

Plugin: User Submitted Posts – Enable Users to Submit Posts from the Front End

Vulnerability: Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode
Patched Version: 20230901
Recommended Action: Update to version 20230901, or a newer patched version

Plugin: Multi-column Tag Map

Vulnerability: Cross-Site Request Forgery
Patched Version: 17.0.27
Recommended Action: Update to version 17.0.27, or a newer patched version

Plugin: WP Job Portal – A Complete Recruitment System for Company or Job Board website

Vulnerability: Unauthenticated SQL Injection
Patched Version: 2.0.6
Recommended Action: Update to version 2.0.6, or a newer patched version

Plugin: Export Import Menus

Vulnerability: Authenticated (Subscriber+) Arbitrary File Upload
Patched Version: 1.9.0
Recommended Action: Update to version 1.9.0, or a newer patched version

Plugin: Order Delivery Date for WP e-Commerce

Plugin: Font Awesome 4 Menus

Plugin: Activity Log – Monitor & Record User Changes

Vulnerability: IP Address Spoofing
Patched Version: 2.8.8
Recommended Action: Update to version 2.8.8, or a newer patched version

Plugin: Notice Bar

Vulnerability: Authenticated (Contributor+) Stored Cross-Site Scripting
Patched Version: 3.1.1
Recommended Action: Update to version 3.1.1, or a newer patched version

Plugin: VS Contact Form

Vulnerability: Missing Authorization
Patched Version: 14.0
Recommended Action: Update to version 14.0, or a newer patched version

Plugin: Simple Membership

Vulnerability: Reflected Cross-Site Scripting
Patched Version: 4.3.6
Recommended Action: Update to version 4.3.6, or a newer patched version

Plugin: MyCryptoCheckout – Bitcoin, Ethereum, and 100+ altcoins for WooCommerce

Vulnerability: Cross-Site Request Forgery
Patched Version: 2.126
Recommended Action: Update to version 2.126, or a newer patched version

Plugin: Email posts to subscribers

Plugin: BitPay Checkout for WooCommerce

Vulnerability: Missing Authorization
Patched Version: 5.0.0
Recommended Action: Update to version 5.0.0, or a newer patched version

Plugin: Starter Templates — Elementor, WordPress & Beaver Builder Templates

Vulnerability: Incorrect Authorization
Patched Version: 3.2.6
Recommended Action: Update to version 3.2.6, or a newer patched version

Plugin: Back To The Top Button

Vulnerability: Authenticated (Administrator+) Stored Cross-Site Scripting
Patched Version: 2.1.7
Recommended Action: Update to version 2.1.7, or a newer patched version

Plugin: WP Bannerize Pro

Vulnerability: Reflected Cross-Site Scripting
Patched Version: 1.7.0
Recommended Action: Update to version 1.7.0, or a newer patched version

Plugin: authLdap

Vulnerability: Cross-Site Request Forgery
Patched Version: 2.5.9
Recommended Action: Update to version 2.5.9, or a newer patched version

Plugin: Woocommerce Support System

Vulnerability: Authenticated (Administrator+) SQL Injection via ‘orderby’
Patched Version: 1.2.2
Recommended Action: Update to version 1.2.2, or a newer patched version

Plugin: WP Synchro – WordPress Migration Plugin for Database & Files

Vulnerability: Cross-Site Request Forgery
Patched Version: 1.10.0
Recommended Action: Update to version 1.10.0, or a newer patched version

Plugin: Regpack

Plugin: MailMunch – Grow your Email List

Vulnerability: Cross-Site Request Forgery
Patched Version: 3.1.3
Recommended Action: Update to version 3.1.3, or a newer patched version

Plugin: RSVPMaker

Vulnerability: Unauthenticated SQL Injection
Patched Version: 10.6.7
Recommended Action: Update to version 10.6.7, or a newer patched version

Plugin: Slider Pro

Vulnerability: Missing Authorization via AJAX actions
Patched Version: 4.8.7
Recommended Action: Update to version 4.8.7, or a newer patched version

Plugin: User Feedback – Create Interactive Feedback Form, User Surveys, and Polls in Seconds

Vulnerability: Unauthenticated Stored Cross-Site Scripting
Patched Version: 1.0.8
Recommended Action: Update to version 1.0.8, or a newer patched version

Plugin: Poll Maker – Versus Polls, Anonymous Polls, Image Polls

Vulnerability: Reflected Cross-Site Scripting
Patched Version: 4.7.1
Recommended Action: Update to version 4.7.1, or a newer patched version

Plugin: SendPress Newsletters

Plugin: Locations

***

Check out the Watch Out Wednesday Archive for past Watch Out Wednesday posts.

About the Author

Odell Duppins Jr

Well qualified professional with plenty of hands on experience with various technologies. Excellent analytical and troubleshooting skills with a keen ability of developing and/or simplifying processes by finding and developing new innovative solutions.