84,000 WordPress Sites Affected by Three Plugins With The Same Vulnerability

WordFence - 

On November 5, 2021 the Wordfence Threat Intelligence team initiated the responsible disclosure process for a vulnerability we discovered in “Login/Signup Popup”, a WordPress plugin that is installed on over 20,000 sites. A few days later we discovered the same vulnerability present in two additional plugins developed by the same author: “Side Cart Woocommerce (Ajax)”, installed on over 60,000 sites, and “Waitlist Woocommerce ( Back in stock notifier )”, installed on over 4,000 sites. This flaw made it possible for an attacker to update arbitrary site options on a vulnerable site, provided they could trick a site’s administrator into performing an action, such as clicking on a link.

All Wordfence users, including Wordfence Premium customers and free Wordfence users are protected against any attackers attempting to exploit this vulnerability. Wordfence Premium users received a firewall rule to protect against any exploits targeting these vulnerabilities on November 5, 2021. Sites still using the free version of Wordfence received the same protection on December 5, 2021.

We sent the full disclosure details on November 5, 2021, after the developer confirmed the appropriate channel to handle communications. After several follow-ups a patched version of “Login/Signup Popup” was released on November 24, 2021, while

Read More: https://www.wordfence.com/blog/2022/01/84000-wordpress-sites-affected-by-three-plugins-with-the-same-vulnerability/