WordPress Elementor Widgets Add-On Vulnerability via @sejournal, @martinibuster

A WordPress plugin add-on for the fashionable Elementor leafage builder precocious patched a vulnerability affecting implicit 200,000 installations. The exploit, recovered successful the Jeg Elementor Kit plugin, allows authenticated attackers to upload malicious scripts.

Stored Cross-Site Scripting (Stored XSS)

The spot fixed an contented that could pb to a Stored Cross-Site Scripting exploit that allows an attacker to upload malicious files to a website server wherever it tin beryllium activated erstwhile a idiosyncratic visits the web page. This is antithetic from a Reflected XSS which requires an admin oregon different idiosyncratic to beryllium tricked into clicking a nexus that initiates the exploit. Both kinds of XSS tin pb to a full-site takeover.

Insufficient Sanitization And Output Escaping

Wordfence posted an advisory that noted the root of the vulnerability is successful lapse successful a information signifier known arsenic sanitization which is simply a modular requiring a plugin to filter what a idiosyncratic tin input into the website. So if an representation oregon substance is what’s expected past each different kinds of input are required to beryllium blocked.

Another contented that was patched progressive a information signifier called Output Escaping which is simply a process akin to filtering that applies to what the plugin itself outputs, preventing it from outputting, for example, a malicious script. What it specifically does is to person characters that could beryllium interpreted arsenic code, preventing a user’s browser from interpreting the output arsenic codification and executing a malicious script.

The Wordfence advisory explains:

“The Jeg Elementor Kit plugin for WordPress is susceptible to Stored Cross-Site Scripting via SVG File uploads successful each versions up to, and including, 2.6.7 owed to insufficient input sanitization and output escaping. This makes it imaginable for authenticated attackers, with Author-level entree and above, to inject arbitrary web scripts successful pages that volition execute whenever a idiosyncratic accesses the SVG file.”

Medium Level Threat

The vulnerability received a Medium Level menace people of 6.4 connected a standard of 1 – 10. Users are recommended to update to Jeg Elementor Kit mentation 2.6.8 (or higher if available).

Read the Wordfence advisory:

Jeg Elementor Kit <= 2.6.7 – Authenticated (Author+) Stored Cross-Site Scripting via SVG File

Featured Image by Shutterstock/Cast Of Thousands

SEJ STAFF Roger Montti Owner - Martinibuster.com astatine Martinibuster.com

I person 25 years hands-on acquisition successful SEO, evolving on with the hunt engines by keeping up with the latest ...