WordPress Struck With Numerous Vulnerabilities In Versions Prior To 6.0.3

Posted by

WordPress released a security release to address several vulnerabilities discovered in versions of WordPress prior to 6.0.3. WordPress likewise upgraded all variations since WordPress 3.7.

Cross Website Scripting (XSS) Vulnerability

The U.S. Federal Government National Vulnerability Database published cautions of numerous vulnerabilities impacting WordPress.

There are numerous sort of vulnerabilities impacting WordPress, consisting of a type called a Cross Website Scripting, often described as XSS.

A cross site scripting vulnerability typically emerges when a web application like WordPress doesn’t properly inspect (sterilize) what is input into a form or submitted through an upload input.

An assaulter can send a destructive script to a user who checks out the site which then carries out the malicious script, thereupon providing delicate details or cookies including user credentials to the aggressor.

Another vulnerability discovered is called a Stored XSS, which is normally thought about to be even worse than a regular XSS attack.

With a stored XSS attack, the harmful script is saved on the website itself and is carried out when a user or logged-in user checks out the site.

A third kind vulnerability found is called a Cross-Site Demand Forgery (CSRF).

The non-profit Open Web Application Security Project (OWASP) security site explains this kind of vulnerability:

“Cross-Site Request Forgery (CSRF) is an attack that forces an end user to carry out unwanted actions on a web application in which they’re currently authenticated.

With a little aid of social engineering (such as sending out a link through e-mail or chat), an assaulter might deceive the users of a web application into executing actions of the aggressor’s picking.

If the victim is a normal user, an effective CSRF attack can force the user to perform state altering demands like transferring funds, changing their email address, etc.

If the victim is an administrative account, CSRF can jeopardize the entire web application.”

These are the vulnerabilities discovered:

  1. Kept XSS via wp-mail. php (post by email)
  2. Open reroute in ‘wp_nonce_ays’
  3. Sender’s email address is exposed in wp-mail. php
  4. Media Library– Reflected XSS through SQLi
  5. Cross-Site Demand Forgery (CSRF) in wp-trackback. php
  6. Kept XSS through the Customizer
  7. Go back shared user instances presented in 50790
  8. Kept XSS in WordPress Core through Remark Editing
  9. Data direct exposure through the REST Terms/Tags Endpoint
  10. Material from multipart emails leaked
  11. SQL Injection due to inappropriate sanitization in ‘WP_Date_Query ‘RSS Widget: Stored XSS concern
  12. Saved XSS in the search block
  13. Feature Image Block: XSS issue
  14. RSS Block: Stored XSS problem
  15. Fix widget block XSS

Recommended Action

WordPress advised that all users update their websites immediately.

The official WordPress announcement specified:

“This release includes a number of security repairs. Since this is a security release, it is recommended that you update your websites right away.

All versions given that WordPress 3.7 have actually likewise been upgraded.”

Read the official WordPress announcement here:

WordPress 6.0.3 Security Release

Check Out the National Vulnerability Database entries for these vulnerabilities:

CVE-2022-43504

CVE-2022-43500

CVE-2022-43497

Included image by Best SMM Panel/Asier Romero