WordPress

69 plugins e 1 tema WordPress estão vulneráveis

Pesquisadores de vulnerabilidades WordPress apontam que nas últimas semanas vários sites estão vulneráveis e chamam atenção para atualizarem ou removerem os plugins!

Emanuel Negromonte

Wordfence acaba de emitir um novo aviso sobre as dezenas de vulnerabilidades encontradas em instalações WordPress. Foram 31 pesquisadores destas vulnerabilidades que contribuíram para catalogar tudo isso e divulgar para todos os donos de sites de WordPress. As recomendações são sempre verificar e corrigir caso o seu site esteja vulnerável. Assim, saiba que são 80 vulnerabilidades nos últimos 6 dias.

Essas dezenas de vulnerabilidades foram encontradas em 69 plugins e 1 tema WordPress. Deste número, apenas 53 correções foram lançadas. Vale lembrar que não é um problema do CMS, mas de plugins de terceiros que adicionam funcionalidades aos sites WordPress.

Saiba quais são os plugins WordPress que estão vulneráveis

No momento da escrita deste artigo os plugins abaixo estão vulneráveis. Porém, os desenvolvedores podem corrigir isso a qualquer momento. Localizei o plugin que você utiliza com os comandos Ctrl + F e confira se ele está listado.

Software NameSoftware Slug
Advance WordPress Search Pluginth-advance-product-search
All-In-One Security (AIOS) – Security and Firewallall-in-one-wp-security-and-firewall
BigContact Contact Pagebigcontact
Branded Social Images – Open Graph Images with logo and extra text layerbranded-social-images
CBX Currency Convertercbcurrencyconverter
Contact Form Emailcontact-form-to-email
Contact Form Plugin – Fastest Contact Form Builder Plugin for WordPress by Fluent Formsfluentform
ConvertBox Auto Embed WordPress pluginconvertbox-auto-embed
Custom Field Templatecustom-field-template
Cyberus Keycyberus-key
Disqus Conditional Loaddisqus-conditional-load
Easy Table of Contentseasy-table-of-contents
Enhanced Plugin Adminenhanced-plugin-admin
Event Manager and Tickets Selling Plugin for WooCommercemage-eventpress
Events Made Easyevents-made-easy
Export Users Data Distinctexport-users-data-distinct
Floating Cart and Menu Cart for WooCommerceth-all-in-one-woo-cart
Gallery by BestWebSoft – Customizable Image and Photo Galleries for WordPressgallery-plugin
GamiPress – Youtube integrationgamipress-youtube-integration
GiveWP – Donation Plugin and Fundraising Platformgive
Google XML Sitemap for Mobilegoogle-mobile-sitemap
Hummingbird – Optimize Speed, Enable Cache, Minify CSS & Defer Critical JShummingbird-performance
I Recommend Thisi-recommend-this
If Menu – Visibility control for Menusif-menu
InPost Galleryinpost-gallery
JS Job Managerjs-jobs
JetEnginejet-engine
Kanban Boards for WordPresskanban
Klaviyoklaviyo
Lazy Social Commentslazy-facebook-comments
MDTF – Meta Data and Taxonomies Filterwp-meta-data-filter-and-taxonomy-filter
Open Graphiteopen-graphite
Owl Carouselowl-carousel
Pagination by BestWebSoft – Customizable WordPress Content Splitter and Navigation Pluginpagination
Photo Gallery by 10Web – Mobile-Friendly Image Galleryphoto-gallery
Pricing Tables For WPBakery Page Builder (formerly Visual Composer)pricing-tables-for-wpbakery-page-builder
Product Feed PRO for WooCommercewoo-product-feed-pro
Safe SVGsafe-svg
Scheduled Announcements Widgetscheduled-announcements-widget
Simple Custom Author Profilessimple-custom-author-profiles
Simple Giveaways – Grow your business, email lists and traffic with contestsgiveasap
Simple Mobile URL Redirectsimple-mobile-url-redirect
Slider, Gallery, and Carousel by MetaSlider – Responsive WordPress Slideshowsml-slider
Stock Sync for WooCommercestock-sync-for-woocommerce
Store Locator WordPressagile-store-locator
Stylish Cost Calculatorstylish-cost-calculator-premium
Team Member – Team with Sliderteam-showcase-supreme
Thank You Page Customizer for WooCommerce – Increase Your Saleswoo-thank-you-page-customizer
Time Sheetstime-sheets
TreePress – Easy Family Trees & Ancestor Profilestreepress
User Registration – Custom Registration Form, Login Form And User Profile For WordPressuser-registration
Userlike – WordPress Live Chat pluginuserlike
Variation Swatches for WooCommerceth-variation-swatches
Vertical scroll recent postvertical-scroll-recent-post
VigilanTorvigilantor
W4 Post Listw4-post-list
WP Content Filter – Censor All Offensive Content From Your Sitewp-content-filter
WP Popup Bannerswp-popup-banners
WP VR – 360 Panorama and Virtual Tour Builder For WordPresswpvr
Waiting: One-click countdownswaiting
Wbcom Designs – BuddyPress Activity Social Sharebp-activity-social-share
Weather Stationlive-weather-station
WooCommerce JazzCash Gateway Pluginjazzcash-woocommerce-gateway
WooCommerce Payments – Fully Integrated Solution Built and Supported by Woowoocommerce-payments
WordPress Amazon S3 Pluginwp-s3
WordPress CRM, Email & Marketing Automation for WordPress | Award Winner — Groundhogggroundhogg
WordPress Pinterest Plugin – Make a Popup, User Profile, Masonry and Gallery Layoutgs-pinterest-portfolio
amr usersamr-users
eRoom – Zoom Meetings & Webinarseroom-zoom-meetings-webinar

E o tema para WordPress vulnerável é:

Software NameSoftware Slug
Resotoresoto

Se você precisar de mais informações, consulte o post completo com todos os detalhes das vulnerabilidades no Blog do Wordfence.

TAGGED:
Share This Article
Por Emanuel Negromonte
Follow:
Fundador do SempreUPdate. Acredita no poder do trabalho colaborativo, no GNU/Linux, Software livre e código aberto. É possível tornar tudo mais simples quando trabalhamos juntos, e tudo mais difícil quando nos separamos.
Previous Article Como instalar o editor CoinKiller no Linux!
Next Article Como instalar o gerenciador de senhas Enpass no Linux!
Sair da versão mobile