Fake WordPress security advisory pushes backdoor plugin

2023-12-04 17:19

WordPress administrators are being emailed fake WordPress security advisories for a fictitious vulnerability tracked as CVE-2023-45124 to infect sites with a malicious plugin.

The emails pretend to be from WordPress, warning that a new critical remote code execution flaw in the platform was detected on the admin's site, urging them to download and install a plugin that allegedly addresses the security issue.

The entry for the fake plugin shows a likely inflated download count of 500,000, along with multiple phony user reviews elaborating on how the patch restored their compromised site and helped them thwart hacker attacks.

The malicious plugin hides itself from the list of installed plugins, so a manual search on the site's root directory is required to remove it.

WP Fastest Cache plugin bug exposes 600K WordPress sites to attacks.

Hackers exploit critical flaw in WordPress Royal Elementor plugin.

News URL

https://www.bleepingcomputer.com/news/security/fake-wordpress-security-advisory-pushes-backdoor-plugin/

#advisory #backdoor #security #wordpress #CVE-2023-45124

Related Vulnerability

DATE	CVE	VULNERABILITY TITLE	RISK
2023-12-21	CVE-2023-45124	Rejected reason: It is a duplicate.	0.0

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Wordpress		49	36	410	104	29	579
Plugin		2	0	13	0	0	13

News URL

Related news

Related Vulnerability

Related vendor