Lucene search

Chloe ChamberlandWORDFENCE:8CB36BE73178996A0E769C24BEC03DBC

HistoryJul 03, 2024 - 3:31 p.m.

Wordfence Intelligence Weekly WordPress Vulnerability Report (June 24, 2024 to June 30, 2024)

2024-07-0315:31:12

Chloe Chamberland

www.wordfence.com

wordfence

vulnerabilities

wordpress

bug bounty

security

api

webhook

scanner

firewall

premium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

AI Score

9.4

Confidence

High

EPSS

0.013

Percentile

86.2%

JSON

_ Did you know Wordfence runs a Bug Bounty Program for all WordPress plugin and themes at no cost to vendors?__Researchers can earn up to $10,400, for all in-scope vulnerabilities submitted to our Bug Bounty Program! Find a vulnerability, submit the details directly to us, and we handle all the rest. For a limited time, all high risk issues are in-scope for all researchers! _

Last week, there were 125 vulnerabilities disclosed in 104 WordPress Plugins, 20 WordPress Themes, and WordPress Core that have been added to the Wordfence Intelligence Vulnerability Database, and there were 61 Vulnerability Researchers that contributed to WordPress Security last week. Review those vulnerabilities in this report now to ensure your site is not affected.

Our mission with Wordfence Intelligence is to make valuable vulnerability information easily accessible to everyone, like the WordPress community, so individuals and organizations alike can utilize that data to make the internet more secure. That is why the Wordfence Intelligence user interface, vulnerability API, webhook integration, and Wordfence CLI Vulnerability Scanner are all completely free to access and utilize both personally and commercially, and why we are running this weekly vulnerability report.

Enterprises, Hosting Providers, and even Individuals can use the Wordfence CLI Vulnerability Scanner to run regular vulnerability scans across the sites they protect. Or alternatively, utilize the vulnerability Database API to receive a complete dump of our database of over 17,000 vulnerabilities and then utilize the webhook integration to stay on top of the newest vulnerabilities added in real-time, as well as any updates made to the database, all for free.

Click here to sign-up for our mailing list to receive weekly vulnerability reports like this and important WordPress Security reports in your inbox the moment they are published.

New Firewall Rules Deployed Last Week

The Wordfence Threat Intelligence Team reviews each vulnerability to determine impact and severity, along with assessing the likelihood of exploitation, to verify that the Wordfence Firewall provides sufficient protection.

The team rolled out enhanced protection via firewall rules for the following vulnerabilities in real-time to our Premium, Care, and Response customers last week:

WordPress Core < 6.5.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via HTML API
WAF-RULE-710 - data redacted while we work with the vendor on a patch.
WAF-RULE-711 - data redacted while we work with the vendor on a patch.

Wordfence Premium, Care, and Response customers received this protection immediately, while users still running the free version of Wordfence will receive this enhanced protection after a 30 day delay.

Total Unpatched & Patched Vulnerabilities Last Week

Patch Status	Number of Vulnerabilities
Patched	114
Unpatched	11

Total Vulnerabilities by CVSS Severity Last Week

Severity Rating	Number of Vulnerabilities
Low Severity	3
Medium Severity	106
High Severity	9
Critical Severity	7

Total Vulnerabilities by CWE Type Last Week

Vulnerability Type by CWE	Number of Vulnerabilities
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	67
Cross-Site Request Forgery (CSRF)	16
Missing Authorization	16
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')	4
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')	4
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')	3
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')	3
Unrestricted Upload of File with Dangerous Type	3
Authorization Bypass Through User-Controlled Key	2
Information Exposure	2
Embedded Malicious Code	1
Insecure Storage of Sensitive Information	1
Protection Mechanism Failure	1
Server-Side Request Forgery (SSRF)	1
Use of Less Trusted Source	1

Researchers That Contributed to WordPress Security Last Week

Researcher Name	Number of Vulnerabilities

| 16

| 12

| 8

| 6

| 5

| 5

| 5

| 5

| 4

João Pedro Soares de Alcântara

| 4

Ngô Thiên An (ancorn_)

| 3

| 3

| 2

| 2

| 2

| 2

| 2

| 2

| 1

| 1

| 1

| 1

| 1

| 1

Trương Hữu Phúc (truonghuuphuc)

| 1

Huynh Tien Si

| 1

João G. Barbosa (4rCanJ0x!)

| 1

| 1

| 1

| 1

| 1

| 1

| 1

| 1

| 1

| 1

| 1

| 1

| 1

| 1

| 1

| 1

| 1

| 1

| 1

| 1

| 1

| 1

| 1

| 1

| 1

| 1

| 1

| 1

| 1

| 1

| 1

| 1

| 1

| 1

| 1

Are you a security researcher who would like to be featured in our weekly vulnerability report? You can responsibly disclose your WordPress vulnerability discoveries to us and earn a bounty on in-scope vulnerabilities through our Bug Bounty Program. Responsibly disclosing your vulnerability discoveries to us will also get your name added on the Wordfence Intelligence leaderboard along with being mentioned in our weekly vulnerability report.

WordPress Plugins with Reported Vulnerabilities Last Week

Software Name	Software Slug
Ad Invalid Click Protector (AICP)	ad-invalid-click-protector
Advanced File Manager	file-manager-advanced
All In One Redirection	all-in-one-redirection
All-in-One Addons for Elementor – WidgetKit	widgetkit-for-elementor
Auto Featured Image	auto-featured-image
BLAZE Retail Widget	blaze-widget
Branda – White Label & Branding, Custom Login Page Customizer	branda-white-labeling
Britetechs Companion	britetechs-companion
Bug Library	bug-library
Cards for Beaver Builder	bb-bootstrap-cards
Chained Quiz	chained-quiz
Church Admin	church-admin
Contact Form 7 Multi-Step Addon	contact-form-7-multi-step-addon
Conversios – Google Analytics 4 (GA4), Google Ads, Meta Pixel, GTM & more for WordPress	enhanced-e-commerce-for-woocommerce-store
Cookie Consent for WP – Cookie Consent, Consent Log, Cookie Scanner, Script Blocker (for GDPR, CCPA & ePrivacy)	gdpr-cookie-consent
Create by Mediavine	mediavine-create
Defender Security – Malware Scanner, Login Security & Firewall	defender-security
DethemeKit For Elementor	dethemekit-for-elementor
Digital River Global Commerce	digital-river-global-commerce
E2Pdf – Export To Pdf Tool for WordPress	e2pdf
Easy Affiliate Links	easy-affiliate-links
Easy Age Verify	easy-age-verify
Easy Image Collage	easy-image-collage
Elementor Addon Elements	addon-elements-for-elementor-page-builder
Elementor Website Builder Pro	elementor-pro
Elementor Website Builder – More than Just a Page Builder	elementor
ElementsKit Elementor addons	elementskit-lite
Enter Addons – Ultimate Template Builder for Elementor	enteraddons
Events Manager – Calendar, Bookings, Tickets, and more!	events-manager
Exclusive Addons for Elementor	exclusive-addons-for-elementor
Extensions for Elementor	extensions-for-elementor
Featured Image from URL (FIFU)	featured-image-from-url
File Manager	wp-file-manager
Filter & Grids	ymc-smart-filter
Floating Social Buttons	floating-social-buttons
Funnel Builder for WordPress by FunnelKit – Customize WooCommerce Checkout Pages, Create Sales Funnels, Order Bumps & One Click Upsells	funnel-builder
Gallery Blocks with Lightbox. Image Gallery, (HTML5 video , YouTube, Vimeo) Video Gallery and Lightbox for native gallery	simply-gallery-block
Gallery Slideshow	gallery-slideshow
Gutenberg	gutenberg
Gutenberg Blocks with AI by Kadence WP – Page Builder Features	kadence-blocks
Happy Addons for Elementor	happy-elementor-addons
HT Mega – Absolute Addons For Elementor	ht-mega-for-elementor
HTML5 Audio Player- Audio Player Plugin	html5-audio-player
IdeaPush	ideapush
Insert or Embed Articulate Content into WordPress	insert-or-embed-articulate-content-into-wordpress
Login with phone number	login-with-phone-number
Mailster - Email Newsletter Plugin for WordPress	mailster
Masterstudy Elementor Widgets	masterstudy-elementor-widgets
Newspack Blocks	newspack-blocks
NextScripts: Social Networks Auto-Poster	social-networks-auto-poster-facebook-twitter-g
Online Booking & Scheduling Calendar for WordPress by vcita	meeting-scheduler-by-vcita
OpenStreetMap for Gutenberg and WPBakery Page Builder (formerly Visual Composer)	stepbyteservice-openstreetmap
Page and Post Clone	page-or-post-clone
Paid Memberships Pro – Content Restriction, User Registration, & Paid Subscriptions	paid-memberships-pro
Patreon WordPress	patreon-connect
PayPlus Payment Gateway	payplus-payment-gateway
Permalink Manager Lite	permalink-manager
Photo Gallery by Ays – Responsive Image Gallery	gallery-photo-gallery
Pixel Manager for WooCommerce – Track Google Analytics, Google Ads, TikTok and more	woocommerce-google-adwords-conversion-tracking-tag
PixelYourSite – Your smart PIXEL (TAG) & API Manager	pixelyoursite
Pods – Custom Content Types and Fields	pods
Portfolio Gallery – Image Gallery Plugin	portfolio-filter-gallery
PowerPack Lite for Beaver Builder	powerpack-addon-for-beaver-builder
PowerPress Podcasting plugin by Blubrry	powerpress
Print My Blog – Print, PDF, & eBook Converter WordPress Plugin	print-my-blog
Progress Planner	progress-planner
Qualified Electronic Signatures by eID Easy	eid-easy-qualified-electonic-signature
Quiz Maker	quiz-maker
Registration, User Profile, Membership, Content Restriction, User Directory, and Frontend Post Submission – WP User Frontend	wp-user-frontend
Seo Optimized Images	seo-optimized-images
SEO SIMPLE PACK	seo-simple-pack
Simply Show Hooks	simply-show-hooks
Slider & Popup Builder by Depicter – Add Image Slider, Carousel Slider, Exit Intent Popup, Popup Modal, Coupon Popup, Post Slider Carousel	depicter
Slider Revolution	revslider
Social Rocket – Social Sharing Plugin	social-rocket
Social Sharing Plugin – Social Warfare	social-warfare
Stackable – Page Builder Gutenberg Blocks	stackable-ultimate-gutenberg-blocks
Stock Ticker	stock-ticker
Super Testimonials	sola-testimonials
The Plus Addons for Elementor – Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce	the-plus-addons-for-elementor-page-builder
The Ultimate WordPress Toolkit – WP Extended	wpextended
TrustedLogin Vendor	vendor
Tutor LMS – eLearning and online course solution	tutor
Twenty20 Image Before-After	twenty20
Ultimate Post Kit Addons For Elementor – (Post Grid, Post Carousel, Post Slider, Category List, Post Tabs, Timeline, Post Ticker, Tag Cloud)	ultimate-post-kit
Uncanny Automator Pro	uncanny-automator-pro
Uncanny Toolkit Pro for LearnDash	uncanny-toolkit-pro
UsersWP – Front-end login form, User Registration, User Profile & Members Directory plugin for WP	userswp
Visual Website Collaboration, Feedback & Project Management – Atarim	atarim-visual-collaboration
weForms – Easy Drag & Drop Contact Form Builder For WordPress	weforms
WooCommerce	woocommerce
WordPress CRM, Email & Marketing Automation for WordPress	Award Winner — Groundhogg
WP Directory Kit	wpdirectorykit
WP eStore	wp-cart-for-digital-products
WP Job Manager - Resume Manager	wp-job-manager-resumes
WP Maps – Display Google Maps Perfectly with Ease	wp-google-map-plugin
WP Mobile Menu – The Mobile-Friendly Responsive Menu	mobile-menu
WP Photo Album Plus	wp-photo-album-plus
WP Server Health Stats	wp-server-stats
WP-Lister Lite for Amazon	wp-lister-for-amazon
WPCafe – Online Food Ordering, Restaurant Menu, Delivery, and Reservations for WooCommerce	wp-cafe
WPCOM Member	wpcom-member
Wrapper Link Elementor	wrapper-link-elementor
Zita Elementor Site Library	zita-site-library

WordPress Themes with Reported Vulnerabilities Last Week

Software Name	Software Slug
Anima	anima
Blossom Shop	blossom-shop
Coachify	coachify
Elegant Pink	elegant-pink
Esteem	esteem
Foxiz	foxiz
Goya	goya
Infinite	infinite
JobScout	jobscout
Mesmerize	mesmerize
NewsMash	newsmash
OnePress	onepress
Perfect Portfolio	perfect-portfolio
Preschool and Kindergarten	preschool-and-kindergarten
Scylla lite	scylla-lite
Silesia	silesia
Striking	striking-r
The7 — Website and eCommerce Builder for WordPress	dt-the7
Theron Lite	theron-lite
Travel Monster	travel-monster

Vulnerability Details

Please note that if you run the Wordfence plugin on your WordPress site, with the scanner enabled, you should’ve already been notified if your site was affected by any of these vulnerabilities. If you'd like to receive real-time notifications whenever a vulnerability is added to the Wordfence Intelligence Vulnerability Database, check out our Slack and HTTP Webhook Integration, which is completely free to utilize.

PayPlus Payment Gateway <= 6.6.8 - Unauthenticated SQL Injection

10.0

CVSS Rating
Critical (10.0)

CVE-ID
CVE-2024-6205

Patch Status
Patched

Published
Jun 28, 2024

Affected Software
PayPlus Payment Gateway

Researcher

Wordfence Intelligence Weekly WordPress Vulnerability Report (June 24, 2024 to June 30, 2024)

New Firewall Rules Deployed Last Week

Total Unpatched & Patched Vulnerabilities Last Week

Total Vulnerabilities by CVSS Severity Last Week

Total Vulnerabilities by CWE Type Last Week

Researchers That Contributed to WordPress Security Last Week

WordPress Plugins with Reported Vulnerabilities Last Week

WordPress Themes with Reported Vulnerabilities Last Week

Vulnerability Details

Related