If the attackers haven’t registered as users, they can exploit another vulnerability affecting the Ultimate Addons for Elementor WordPress plugin that allow them to register as subscriber-level users. The attackers exploited the vulnerability to install backdoors or webshells to maintain access to the compromised sites, gain full admin access to fully compromise it, or even to delete the entire site. The Elementor Pro is affected by a remote code execution vulnerability that could be exploited by attackers with registered user access to upload arbitrary files on the targeted websites and execute code remotely. This plugin has a zero day vulnerability which is exploitable if users have open registration.” “The second affected plugin is Ultimate Addons for Elementor, which is made by Brainstorm Force.”Įlementor Pro is a paid plugin that is actually installed on over 1 million websites, it allows users to easily create WordPress websites. The first is Elementor Pro which is made by Elementor. “There are two plugins affected by this attack campaign. We have reviewed the log files of compromised sites to confirm this activity.” reads the analysis published by WordFence. “On May 6, 2020, our Threat Intelligence team received reports of active exploitation of vulnerabilities in two related plugins, Elementor Pro and Ultimate Addons for Elementor. Security experts from Wordfence have observed a hacking campaign targeting the two issues since May 6, 2020, when the attacks began the flaw was a zero-day.
0 kommentar(er)
