Request a Demo
Rewterz
Rewterz Threat Update – CVE-2023-20198: Cisco IOS XE Zero-Day Exploit Infects 40,000 Devices
October 20, 2023
Rewterz
Rewterz Threat Alert – An Emerging Ducktail Infostealer – Active IOCs
October 20, 2023

Rewterz Threat Advisory – Multiple WordPress Plugins Vulnerabilities

Severity

Medium

Analysis Summary

CVE-2023-4971 CVSS:4.7

Weaver Xtreme Theme Support Plugin for WordPress could allow a remote authenticated attacker to execute arbitrary code on the system, caused by a PHP object injection vulnerability. By sending a specially crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system.

CVE-2023-5538 CVSS:7.2

MpOperationLogs Plugin for WordPress is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using the IP Request Headers to inject malicious script into a Web page which would be executed in a victim’s Web browser within the security context of the hosting Web site, once the page is viewed. An attacker could use this vulnerability to steal the victim’s cookie-based authentication credentials.

CVE-2023-5621 CVSS:4.4

Thumbnail Slider With Lightbox plugin for WordPress is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote authenticated attacker could exploit this vulnerability to inject malicious script into a Web page which would be executed in a victim’s Web browser within the security context of the hosting Web site, once the page is viewed. An attacker could use this vulnerability to steal the victim’s cookie-based authentication credentials.

CVE-2023-5639 CVSS:6.4

Team Showcase plugin for WordPress is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the tmfshortcode shortcode. A remote authenticated attacker could exploit this vulnerability to inject malicious script into a Web page which would be executed in a victim’s Web browser within the security context of the hosting Web site, once the page is viewed. An attacker could use this vulnerability to steal the victim’s cookie-based authentication credentials.

CVE-2023-5638 CVSS:6.4

Booster for WooCommerce plugin for WordPress is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the wcj_image shortcode. A remote authenticated attacker could exploit this vulnerability to inject malicious script into a Web page which would be executed in a victim’s Web browser within the security context of the hosting Web site, once the page is viewed. An attacker could use this vulnerability to steal the victim’s cookie-based authentication credentials.

CVE-2023-5336 CVSS:8.1

iPanorama 360 WordPress Virtual Tour Builder plugin for WordPress is vulnerable to SQL injection. A remote authenticated attacker could send specially crafted SQL statements to the shortcode, which could allow the attacker to view, add, modify or delete information in the back-end database.

CVE-2023-44990 CVSS:5.9

WOLF Plugin for WordPress is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote authenticated attacker could exploit this vulnerability to inject malicious script into a Web page which would be executed in a victim’s Web browser within the security context of the hosting Web site, once the page is viewed. An attacker could use this vulnerability to steal the victim’s cookie-based authentication credentials.

CVE-2023-45003 CVSS:7.1

Social Feed Plugin for WordPress is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using a specially crafted URL to execute a script in a victim’s Web browser within the security context of the hosting Web site, once the URL is clicked. An attacker could use this vulnerability to steal the victim’s cookie-based authentication credentials.

CVE-2023-45004 CVSS:7.1

Woo Custom Emails Plugin for WordPress is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using a specially crafted URL to execute a script in a victim’s Web browser within the security context of the hosting Web site, once the URL is clicked. An attacker could use this vulnerability to steal the victim’s cookie-based authentication credentials.

CVE-2023-45005 CVSS:7.1

Seriously Simple Stats Plugin for WordPress is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using a specially crafted URL to execute a script in a victim’s Web browser within the security context of the hosting Web site, once the URL is clicked. An attacker could use this vulnerability to steal the victim’s cookie-based authentication credentials.

CVE-2023-45006 CVSS:7.1

WooODT Lite Plugin for WordPress is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using a specially crafted URL to execute a script in a victim’s Web browser within the security context of the hosting Web site, once the URL is clicked. An attacker could use this vulnerability to steal the victim’s cookie-based authentication credentials.

CVE-2023-45109 CVSS:5.4

WhitePage Plugin for WordPress is vulnerable to cross-site request forgery, caused by improper validation of user-supplied input. By persuading an authenticated user to visit a malicious Web site, a remote attacker could send a malformed HTTP request to perform unauthorized actions. An attacker could exploit this vulnerability to perform cross-site scripting attacks, Web cache poisoning, and other malicious activities.

CVE-2023-45071 CVSS:7.2

Contact Form Email for WordPress is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using the Message field to inject malicious script into a Web page which would be executed in a victim’s Web browser within the security context of the hosting Web site, once the page is viewed. An attacker could use this vulnerability to steal the victim’s cookie-based authentication credentials.

CVE-2023-45067 CVSS:6.5

WP Simple HTML Sitemap Plugin for WordPress is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote authenticated attacker could exploit this vulnerability to inject malicious script into a Web page which would be executed in a victim’s Web browser within the security context of the hosting Web site, once the page is viewed. An attacker could use this vulnerability to steal the victim’s cookie-based authentication credentials.

CVE-2023-45065 CVSS:7.1

Bulk NoIndex & NoFollow Toolkit Plugin for WordPress is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using a specially crafted URL to execute a script in a victim’s Web browser within the security context of the hosting Web site, once the URL is clicked. An attacker could use this vulnerability to steal the victim’s cookie-based authentication credentials.

Impact

  • Gain Access
  • Information Theft
  • Code Execution
  • Cross-Site Scripting

Indicators Of Compromise

CVE

  • CVE-2023-4971
  • CVE-2023-5538
  • CVE-2023-5621
  • CVE-2023-5639
  • CVE-2023-5638
  • CVE-2023-5336
  • CVE-2023-44990
  • CVE-2023-45003
  • CVE-2023-45004
  • CVE-2023-45005
  • CVE-2023-45006
  • CVE-2023-45109
  • CVE-2023-45071
  • CVE-2023-45067
  • CVE-2023-45065

Affected Vendors

WordPress

Affected Products

  • Weaver Xtreme Theme Support Plugin for WordPress 6.3.1
  • MpOperationLogs Plugin for WordPress 1.0.1
  • Thumbnail Slider With Lightbox Plugin for WordPress 1.0
  • Team Showcase plugin for WordPress 1.22.15
  • Team Showcase plugin for WordPress 1.22.14
  • Booster for WooCommerce plugin for WordPress 5.4.3
  • Booster for WooCommerce Plugin for WordPress 3.0.2
  • WhitePage Plugin for WordPress 1.1.5
  • Form Maker by 10Web plugin for WordPress 1.15.19
  • Form Builder Team Form Maker by 10Web Plugin for WordPress 1.15.18
  • Locations Plugin for WordPress 4.0
  • Bulk NoIndex & NoFollow Toolkit Plugin for WordPress 1.42
  • iPanorama 360 plugin for WordPress 1.8.0
  • iPanorama 360 plugin for WordPress 1.7.9
  • WOLF Plugin for WordPress 1.0.7.1
  • Social Feed Plugin for WordPress 2.2.0
  • Seriously Simple Stats Plugin for WordPress 1.5.1
  • Contact Form Email Plugin for WordPress 1.3.38

Remediation

Refer to WordPress Plugin Directory for patch, upgrade or suggested workaround information.

CVE-2023-4971

CVE-2023-5538

CVE-2023-5621

CVE-2023-5639

CVE-2023-5638

CVE-2023-5336

CVE-2023-44990

CVE-2023-45003

CVE-2023-45004

CVE-2023-45005

CVE-2023-45006

CVE-2023-45109

CVE-2023-45071

CVE-2023-45067

CVE-2023-45065