Home News Stored XSS in WordPress Product Review Lite plugin allows for automated takeovers

Stored XSS in WordPress Product Review Lite plugin allows for automated takeovers

by Phill

A vital defect at the WP Product Review Lite plugin installed over 40,000 WordPress websites could potentially let their shoot over.

The WP Product Review Lite plugin lets site owners to rapidly create custom review posts utilizing pre-defined templates, it’s now installed on over 40,000 WordPress websites.

The vulnerability has been discovered by investigators in Sucuri Labs, it’s a persistent XSS that may be exploited by remote, unauthenticated attackers.

“During a regular research audit for our Sucuri Firewall, we found an Unauthenticated Persistent Cross-Site Scripting (XSS) impacting 40,000+ users of this WP Product Review plugin” Reads the investigation published by Sucuri.

“All user enter information is sanitized however, the WordPress function properly used may be bypassed while the parameter is put in an HTML feature. A successful assault ends in malicious scripts being referenced in all of the website’s products.”

Upon activating the defect, the attackers can inject malicious scripts in most of the goods saved at the database of the targeted site.

An attacker could fool a site admin to obtaining the products that are endangered, they then can redirect them to a rogue website, or sneak the session cookies to authenticate on behalf of the secretary.

When the attacker has authenticated as an admin, then it might incorporate a new admin accounts to take within the website.

Researchers in the Sucuri Labs demonstrated that they’re unaware of any attacks in the wild exploiting the defect.

Pros recommend website administrators to update their plug to version 3.7.6 when possible because unauthenticated strikes could be automatic by attackers.

“Unauthenticated strikes are extremely serious since they may be automated, which makes it effortless for hackers to mount powerful, widespread attacks against exposed sites,” Sucuri Labs conclude.

“The range of supports that are active, the ease of manipulation, and also the ramifications of a successful attack will be what causes this vulnerability especially dangerous.”

The vulnerability was reported on the plugin programmers on May 13, and it had been fixed in just 24 hours, on May 14, 2020.

In the time of writing, over 7,000 users have fixed their WP Product Review Lite plugin, this usually means that over 32,000 websites have yet to take action.

You may also like

This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. Accept Read More