WordPress Vulnerability Report – February 1, 2023

Vulnerable plugins and themes are the #1 reason WordPress websites get hacked. The weekly WordPress Vulnerability Report powered by WPScan covers recent WordPress plugin, theme, and core vulnerabilities and what to do if you run one of the vulnerable plugins or themes on your website.

In the past, we’ve listed vulnerabilities on a per-plugin or per-theme basis. To better describe the vulnerabilities listed, we’re now adding additional listings when a plugin has patched multiple vulnerabilities. While this makes the report somewhat longer, we feel that more information will help you understand the full scope of the vulnerabilities that have been patched so that you can more effectively make good decisions about your site’s security. We welcome your feedback!

Each vulnerability will have a severity rating of low, medium, high, or critical. Responsible disclosure and reporting of vulnerabilities is an integral part of keeping the WordPress community safe. Please share this post with your friends to help get the word out and make WordPress safer for everyone!

WordPress 6.1.1 was released on November 15, 2022, as a short-cycle maintenance release with 29 bug fixes in Core and 21 bug fixes for the block editor. Because this is a core update, be sure to update to WordPress 6.1.1 as soon as possible! As always, with a major release like this, it makes sense to ensure your site is backed up with BackupBuddy before updating.

There is a known unpatched vulnerability in WordPress core affecting all versions of WordPress. If you’re using iThemes Security, you’ve probably been alerted to this. As we are unsure when this very low-severity vulnerability will be patched, emails from iThemes Security will no longer alert for this specific vulnerability. Read our blog post about this vulnerability.

Get the weekly WordPress Vulnerability Report delivered to your inbox each Wednesday.

In this section, the latest WordPress plugin vulnerabilities have been disclosed. Each plugin listing includes the type of vulnerability, the active installations, the version number if patched, the severity rating, and the CVE.

Plugin Slug
ultimate-addons-for-gutenberg
Installations
400,000+
Vulnerability
Contributor+ Stored Cross-Side Scripting
Patched in Version
1.15.0
Patched in Version
4.2.0
Patched in Version
4.2.0
Patched in Version
4.2.0
Vulnerability
Contributor+ Stored XSS via Shortcode
Patched in Version
2.9.9
CVE
2022-4830
Patched in Version
2.5.4
CVE
2023-0232
Patched in Version
2.5.4
CVE
2023-0231
Plugin Slug
real-media-library-lite
Patched in Version
4.18.29
CVE
2023-0285
Patched in Version
3.1.0.5
CVE
2023-0380
Plugin Slug
customer-reviews-woocommerce
Patched in Version
5.17.0
CVE
2023-0079
Patched in Version
3.7.1
CVE
2023-0375
Patched in Version
1.7.9
Severity Score
Medium
CVE
2023-0271

Product Slider and Carousel with Category for WooCommerce

Plugin Slug
woo-product-slider-and-carousel-with-category
Vulnerability
Contributor+ Stored XSS via Shortcode
Patched in Version
2.8
CVE
2022-4791
Vulnerability
Contributor+ Stored XSS in Shortcode
Patched in Version
4.0.0
CVE
2022-4714
Plugin Slug
greenshift-animation-and-page-builder-blocks
Vulnerability
Contributor+ Stored XSS
CVE
2023-0378
Patched in Version
1.2.2
CVE
2023-0059
Vulnerability
Contributor+ Stored XSS
CVE
2023-0067

Extensive VC Addons for WPBakery page builder

Plugin Slug
extensive-vc-addon
Patched in Version
1.9.1
CVE
2023-0159
Patched in Version
3.3.8.3
CVE
2023-0429
Patched in Version
3.3.8.2
CVE
2023-0428
Patched in Version
1.1.28
CVE
2023-0371
Installations
900+
Patched in Version
1.4.0
CVE
2023-0559
Plugin Slug
shortcode-for-font-awesome
Patched in Version
1.4.1
CVE
2023-0419
Patched in Version
0.7.5
CVE
2023-0372
Installations
500+
Patched in Version
1.5.3
CVE
2023-0442
Vulnerability
Contributor+ Stored XSS via shortcode
Patched in Version
1.5.3
CVE
2023-0366

GS Products Slider for WooCommerce

Plugin Slug
gs-woocommerce-products-slider
Patched in Version
1.5.9
CVE
2023-0492
Installations
400+
Patched in Version
1.6.1
CVE
2023-0540
Installations
400+
Patched in Version
1.3.1
CVE
2023-0541
Patched in Version
8.4.4
CVE
2023-0581
Vulnerability
Multiple Reflected Cross-Site Scripting
Patched in Version
8.8.3
CVE
2022-4897
Vulnerability
Private Message Disclosure via IDOR
Patched in Version
1.0.6
CVE
2023-0453
Plugin Slug
quick-restaurant-menu
Vulnerability
Menu Items Update via CSRF
Patched in Version
2.1.0
CVE
2023-0554
Patched in Version
2.1.0
CVE
2023-0553
Plugin Slug
quick-restaurant-menu
Vulnerability
Subscriber+ Arbitrary Post Deletion/Updating
Patched in Version
2.1.0
CVE
2023-0550

ContentStudio < 1.2.6 – Authorisation Bypass

Patched in Version
1.2.6
CVE
2023-0558
Patched in Version
1.2.6
CVE
2023-0557

WordPress Plugin Vulnerabilities – No Known Fix

This section contains plugin vulnerabilities with no known fix. Until a patch is available, immediately uninstall and delete the plugin.

Plugin Slug
wp-structuring-markup
Vulnerability
Contributor+ Stored XSS via Shortcode
Patched in Version
No Fix
CVE
2022-4666

Page Builder: Live Composer

Plugin Slug
live-composer-page-builder
Vulnerability
Contributor+ Stored XSS via Shortcode
Patched in Version
No Fix
CVE
2022-4669
Plugin Slug
baw-login-logout-menu
Vulnerability
Contributor+ Stored XSS in Shortcode
Patched in Version
No Fix
CVE
2022-4622
Plugin Slug
easy-facebook-like-box
Vulnerability
Contributor+ Stored XSS via Shortcode
Patched in Version
No Fix
CVE
2022-4754

Intuitive Custom Post Order

Plugin Slug
intuitive-custom-post-order
Vulnerability
Arbitrary Menu Order Update via CSRF
Patched in Version
No Fix
CVE
2022-4386

Intuitive Custom Post Order

Plugin Slug
intuitive-custom-post-order
Vulnerability
Subscriber+ Arbitrary Menu Order Update
Patched in Version
No Fix
CVE
2022-4385
Plugin Slug
simple-file-downloader
Vulnerability
Contributor+ Stored XSS via Shortcode
Patched in Version
No Fix
CVE
2022-4764
Plugin Slug
baw-post-views-count
Vulnerability
Contributor+ Stored XSS in Shortcode
Patched in Version
No Fix
CVE
2022-4761

WP Responsive Testimonials Slider And Widget

Plugin Slug
wp-responsive-testimonials-slider-and-widget
CVE
2022-4750

Opening Hours

Plugin Slug
wp-opening-hours
Vulnerability
Contributor+ Stored XSS via Shortcode
Patched in Version
No Fix
CVE
2022-4752

Hueman Addons

Vulnerability
Contributor+ Stored XSS via Shortcode
Patched in Version
No Fix
CVE
2022-4784

Video.js – HTML5 Video Player for WordPress

Plugin Slug
videojs-html5-video-player-for-wordpress
Patched in Version
No Fix
CVE
2022-4786
Plugin Slug
video-sidebar-widgets
Vulnerability
Contributor+ Stored XSS via Shortcode
Patched in Version
No Fix
CVE
2022-4785

Bootstrap Shortcodes

Vulnerability
Contributor+ Stored XSS via Shortcode
Patched in Version
No Fix
Severity Score
Medium
CVE
2022-4777

WordPress Theme Vulnerabilities

In this section, the latest WordPress theme vulnerabilities have been disclosed. Each theme listing includes the type of vulnerability, the active installations, the version number if patched, the severity rating, and the CVE.

Never worry about running a vulnerable plugin or theme again.

As you can see from this report, lots of new WordPress plugin and theme vulnerabilities are disclosed each week. We know it can be difficult to stay on top of every reported vulnerability disclosure, so the iThemes Security Pro plugin makes it easy to make sure your site isn’t running a theme, plugin, or WordPress core version with a known vulnerability.

Scans Your Website Twice a Day for Vulnerabilities

Your website’s plugins, themes, and WordPress core versions are checked against the WPScan Vulnerability Database for the latest vulnerability disclosures.

Automatically Updates if a Security Fix is Available

Paired with Version Management, iThemes Security will automatically update a plugin, theme, or WordPress core version if it has a vulnerability.

Emails You if Site Scan Detects a Vulnerability

You can receive an email report if your site is running vulnerable versions of a plugin, theme, or WordPress core. Customize the email addresses that receive scan results.

The Best WordPress Security Plugin to Secure & Protect WordPress Sites

WordPress currently powers over 40% of all websites, so it has become an easy target for hackers with malicious intent. The iThemes Security Pro plugin takes the guesswork out of WordPress security to make it easy to secure & protect your WordPress website. It’s like having a full-time security expert on staff who constantly monitors and protects your WordPress site for you.

Each week, the team at iThemes team publishes new WordPress tutorials and resources, including the Weekly WordPress Vulnerability Report. Since 2008, iThemes has been dedicated to helping you build, maintain, and secure WordPress sites for yourself or for clients. Our mission? Make People’s Lives Awesome.

This content was originally published here.