Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
hiveproHive ProHIVEPRO:D3B54656C94CE4A05FED4E1B7F1947DC
HistorySep 26, 2022 - 6:35 a.m.

Zero-Day vulnerability in WPGateway Plugin compromises WordPress sites

2022-09-2606:35:39
Hive Pro
www.hivepro.com
19
JSON

Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary The recently uncovered CVE-2022-3180 zero-day vulnerability allows an unauthenticated attacker to add an administrator account to WPGateway-powered websites. WPGateway is a commercial plugin that allows users to install, backup, and clone WordPress. The flaw is being actively abused, and no patch has been issued yet.

Related

attackerkb 1
wordfence 1
patchstack 1
cve 1
thn 1
packetstorm 1
zdt 1
malwarebytes 1
checkpoint_advisories 1
attackerkb
attackerkb
CVE-2022-3180
2022-09-12 00:00:00
wordfence
wordfence
PSA: Zero-Day Vulnerability in WPGateway Actively Exploited in the Wild
2022-09-13 15:50:53
patchstack
patchstack
WordPress WPGateway premium plugin <= 3.5 - Unauthenticated Privilege Escalation vulnerability
2022-09-13 00:00:00
cve
cve
CVE-2022-3180
2022-09-13 18:18:51
thn
thn
Over 280,000 WordPress Sites Attacked Using WPGateway Plugin Zero-Day Vulnerability
2022-09-14 01:51:00
packetstorm
packetstorm
WordPress WPGateway 3.5 Privilege Escalation
2022-09-14 00:00:00
zdt
zdt
WordPress WPGateway 3.5 Privilege Escalation Vulnerability
2022-09-15 00:00:00
malwarebytes
malwarebytes
WPGateway WordPress plugin vulnerability could allow full site takeover
2022-09-14 11:00:00
checkpoint_advisories
checkpoint_advisories
WordPress WPGateway Plugin Privilege Escalation (CVE-2022-3180)
2022-09-18 00:00:00
JSON
Related for HIVEPRO:D3B54656C94CE4A05FED4E1B7F1947DC
attackerkb1wordfence1patchstack1cve1thn1packetstorm1zdt1malwarebytes1checkpoint_advisories1