Security News > 2022 > January > Three Plugins with Same Bug Put 84K WordPress Sites at Risk

Researchers have discovered three WordPress plug-ins with the same vulnerability that allows an attacker to update arbitrary site options on a vulnerable site and completely take it over.

On Nov. 5, 2021, the Wordfence Threat Intelligence team started a process to disclose a vulnerability researchers had found in "Login/Signup Popup," a WordPress plug-in installed on more than 20,000 sites, Wordfence's Chloe Chamberland wrote in a post published online Thursday.

A few days later they discovered that the flaw was present in two other plug-ins by the same developer, who goes by the online name of XootiX. They are "Side Cart Woocommerce," which has been installed on more than 60,000 sites, and "Waitlist Woocommerce," which has been installed on more than 4,000.

Side Cart Woocommerce - designed to work with the Woocommerce plugin for creating an e-commerce store - allows a site's users to access items they've placed into a shopping cart using from anywhere on the site.

Recommended actions for WordPress users who use the plug-ins are to verify that their site has been updated to the latest patched version available for each of them.

Wordfence Premium users received a firewall rule to protect against any exploits targeting them on Nov. 5, and sites still using the free version of Wordfence received the same protection on Dec. 5.

News URL

https://threatpost.com/plugins-vulnerability-84k-wordpress-sites/177654/