Another Wordpress Plugin Vulnerability: WP-Forum 1.7.4

Posted 1477 days ago - Security, Wordpress

Milworm.com has released another Wordpress plugin vulnerability, this time it's WP-Forum 1.7.4. I'm no expert at deciphering exactly how exploits work, but this remote sql injection appears to grant the attacker administrative privileges. If you're using WP-Forum 1.7.4 or earlier on your Wordpress blog, uninstalling this vulnerable plugin is highly recommended.

I was unable to locate a patch or update, so if you happen to come across this information, please share your findings with everyone by submitting a comment.

In the mean time, here's a list of potentially helpful sites:

http://www.milw0rm.com/exploits/4939 - the exploit code/example

http://www.fahlstad.se/wp-plugins/wp-forum/ - official plugin page?

http://www.fahlstad.se/?page_id=243 - plugin discussion/help forums

Word Count: 122

Tags: , , , ,

Click Here to Submit a Comment

Permalink / Last Modified:

Support Nullamatix.com:

E-mail Comment Facebook Del.icio.us Digg Reddit Technorati Furl

See Also:

  • 01/30/2008 -- 2 More Wordpress Plugin Exploits – Adserve & WassUp
    Excerpt: "Wow, four Wordpress plugin exploits released in under a week. Are these plugin authors really amateurs, or just trying to pwn Wordpress blogs? First up, Adserve version 0.2. The SQL injection vulnerability resides in adclick.php. Here's the vulnerable ..."
  • 01/28/2008 -- 2 New Wordpress Plugin SQL Injection Vulnerabilities
    Excerpt: "That's right Wordpresss kiddies, two new vulnerabilities, and they're pretty nasty. Author Houssamix From H-T Team has released two remote SQL injection proof of concepts for WP-Cal and fGallery 2.4.1. The vulnerability for WP-Cal exists ..."
  • 12/25/2009 -- New Tool: Daily [Mod] Security Reports
    Excerpt: "After the Lighttpd mod security post and the DDoS attack that followed, I began working on a script that parses the Lighttpd server-error.log and inserts matched records into MySQL. The result? Check it out here: security.nullamatix.com Daily Security ..."
  • 11/28/2009 -- New Wordpress Plugin: IP Intelligence
    Excerpt: "Description IP Intelligence the ability to retrieve information about a commentators IP address without leaving the "edit-comments.php" page. Version 0.0.1 is capable of retrieving the following information: Reverse DNS/PTR Long/Proper IPv4 ..."

0 Comments

[ RSS feed | Trackback URI | Leave a Comment ]

Leave a Comment

Comments are moderated prior to showing up. If your comment does not show up immediately, please do not attempt to resubmit. If you're redirected to the original post after pressing "Add Comment", your comment was successfully entered into the moderation queue.

Trackback Responses to This Post:

  • No Trackbacks, yet. Help Nullamatix.com by Linking to This Post.