Security News > 2021 > December > All in One SEO Plugin Bug Threatens 3M Websites with Takeovers

An attacker with an account with the site - such as a subscriber, shopping account holder or member - can take advantage of the holes, which are a privilege-escalation bug and an SQL-injection problem, according to researchers at Sucuri.

Essentially, the plugin can send commands to various REST API endpoints, and it performs a permissions check to make sure no one's doing anything they're not allowed to do.

All in One SEO users should update to the patched version to be safe, researchers said.

Earlier this month the plugin "Variation Swatches for WooCommerce," installed across 80,000 WordPress-powered retail sites, was found to contain a stored cross-site scripting security vulnerability that could allow cyberattackers to inject malicious web scripts and take over sites.

In October, two high-severity vulnerabilities in Post Grid, a WordPress plugin with more than 60,000 installations, were found to open the door to site takeovers, according to researchers.

A WordPress plugin bug was discovered in the Hashthemes Demo Importer offering, which allowed users with simple subscriber permissions to wipe sites of all content.

News URL

https://threatpost.com/all-in-one-seo-plugin-bug-threatens-3m-wordpress-websites-takeovers/177240/