🥇Backdoor in 93 AccessPress plugins le theme tse sebelisoang libakeng tse likete tse 360

Bahlaseli ba ile ba khona ho kenya mokokotlo ho li-plugins tsa 40 le lihlooho tsa 53 bakeng sa tsamaiso ea tsamaiso ea litaba tsa WordPress, e entsoeng ke AccessPress, e bolelang hore li-add-on tsa eona li sebelisoa libakeng tse fetang 360 tse likete. Liphetho tsa tlhahlobo ea ketsahalo ha li e-so fanoe, empa ho nahanoa hore khoutu e mpe e ile ea hlahisoa nakong ea ho sekisetsa webosaete ea AccessPress, e etsa liphetoho ho li-archives tse fanoeng bakeng sa ho jarolleloa ka litokollo tse seng li lokolotsoe, kaha backdoor e teng. feela ka khoutu e abuoang ka webosaete ea semmuso ea AccessPress, empa ha e eo ho tsona tse tšoanang tsa li-add-on tse ajoang ka directory ea WordPress.org.

Liphetoho tse mpe li ile tsa sibolloa ke mofuputsi ho JetPack (karohano ea WordPress developer Automatic) ha a ntse a hlahloba khoutu e kotsi e fumanoang webosaeteng ea moreki. Tlhahlobo ea boemo bona e bontšitse hore liphetoho tse mpe li ne li le teng ho tlatsetso ea WordPress e jarollotsoeng ho tsoa webosaeteng ea semmuso ea AccessPress. Li-add-on tse ling tse tsoang ho moetsi a tšoanang le tsona li ne li le tlas'a liphetoho tse mpe tse ileng tsa lumella ho fihlella ka ho feletseng setšeng ka litokelo tsa batsamaisi.

Nakong ea phetoho, bahlaseli ba ile ba eketsa faele ea "initial.php" ho li-archives tse nang le li-plugins le lihlooho, tse neng li kopantsoe ka taelo ea "kenyelletsa" faeleng ea "functions.php". Ho ferekanya tsela, litaba tse mpe tse faeleng ea "initial.php" li ne li patiloe joalo ka "base64 encoded block of data". Kenyelletso e kotsi, ka boikaketsi ba ho fumana setšoantšo ho tsoa sebakeng sa marang-rang wp-theme-connect.com, e kentse khoutu e ka morao ka ho toba faeleng ea wp-includes/vars.php.

Liwebsaete tsa pele tse neng li kenyelletsa liphetoho tse mpe ho li-add-on tsa AccessPress li ile tsa tsejoa ka Loetse 2021. Ho nahanoa hore ke ka nako eo hore backdoor e kenngoa ka har'a li-add-ons. Tsebiso ea pele ho AccessPress mabapi le bothata bo khethiloeng ha ea ka ea arajoa, 'me AccessPress e ile ea khona ho fumana tlhokomelo feela ka mor'a ho kenyelletsa sehlopha sa WordPress.org lipatlisisong. Ka la 15 Mphalane, 2021, li-archives tse anngoeng ke backdoor li ile tsa tlosoa webosaeteng ea AccessPress, 'me mefuta e mecha ea litlatsetso e ile ea lokolloa ka la 17 Pherekhong 2022.

Sucuri e ile ea hlahloba libaka tseo ho tsona mefuta e amehileng ea AccessPress e kentsoeng 'me ea tseba boteng ba li-module tse kotsi tse kentsoeng ka mokokotlong tse rometseng spam le ho fetisetsa phetoho libakeng tsa bosholu (li-modules li ngotsoe ka 2019 le 2020). Ho nahanoa hore bangoli ba backdoor ba ne ba rekisa phihlello ea libaka tse senyehileng.

Lihlooho tseo ho tsona ho ngolisoang sebaka sa backdoor:

accessbuddy 1.0.0
accesspress-motheo 3.2.1
accesspress-lite 2.92
accesspress-mag 2.6.5
accesspress-parallax 4.5
accesspress-ray 1.19.5
accesspress-root 2.5
accesspress-staple 1.9.1
accesspress-store 2.4.9
agency-lite 1.1.6
aplite 1.0.6
bingle 1.0.4
blogger 1.2.6
kaho-lite 1.2.5
doko 1.0.27
khantša leseli 1.3.5
lebenkele la feshene 1.2.1
ho nka lifoto 2.4.0
gaga-Corp 1.0.8
gaga-lite 1.4.2
sebaka se le seng 2.2.8
parallax-blog 3.1.1574941215
parallaxsome 1.3.6
papali 1.1.2
potoloha 1.3.1
ripple 1.2.0
scrollme 2.1.0
sportsmag 1.2.1
storevilla 1.4.1
swing-lite 1.1.9
moqali 1.3.2
ka-mantaha 1.4.1
uncode-lite 1.3.1
unicon-lite 1.2.6
vmag 1.2.7
vmagazine-lite 1.3.5
vmagazine-litaba 1.0.5
ziggy-lesea 1.0.6
zigcy-cosmetics 1.0.5
zigcy-lite 2.0.9

Li-plugins tseo ho tsona ho fumanoeng phetoho e ka morao:

phihlello-ho sa tsejwe-poso 2.8.0 2.8.1 1
accesspress-custom-css 2.0.1 2.0.2
accesspress-custom-post-mofuta 1.0.8 1.0.9
accesspress-facebook-auto-post 2.1.3 2.1.4
accesspress-instagram-feed 4.0.3 4.0.4
accesspress-pinterest 3.3.3 3.3.4
accesspress-social-counter 1.9.1 1.9.2
accesspress-social-icons 1.8.2 1.8.3
accesspress-social-login-lite 3.4.7 3.4.8
accesspress-social-share 4.5.5 4.5.6
fihlella-twitter-auto-post 1.4.5 1.4.6
fihlella-twitter-feed 1.6.7 1.6.8
ak-menu-icons-lite 1.0.9
app-molekane 1.0.7 2
ap-contact-form 1.0.6 1.0.7
ap-custom-testimonial 1.4.6 1.4.7
ap-mega-menu 3.0.5 3.0.6
ap-pricing-tafole-lite 1.1.2 1.1.3
apex-notification-bar-lite 2.0.4 2.0.5
cf7-store-to-db-lite 1.0.9 1.1.0
maikutlo-thibela-ho fihlella 1.0.7 1.0.8
bonolo-lehlakoreng-tabo-cta 1.0.7 1.0.8
everest-admin-theme-lite 1.0.7 1.0.8
everest-coming-soon-lite 1.1.0 1.1.1
everest-comment-rating-lite 2.0.4 2.0.5
everest-counter-lite 2.0.7 2.0.8
everest-faq-manager-lite 1.0.8 1.0.9
everest-gallery-lite 1.0.8 1.0.9
everest-google-places-reviews-lite 1.0.9 2.0.0
everest-review-lite 1.0.7
everest-tab-lite 2.0.3 2.0.4
everest-timeline-lite 1.1.1 1.1.2
inline-call-to-ketso-sehahi-lite 1.1.0 1.1.1
sehlahisoa-slider-for-woocommerce-lite 1.1.5 1.1.6
smart-logo-showcase-lite 1.1.7 1.1.8
smart-scroll-posts 2.0.8 2.0.9
smart-scroll-to-top-lite 1.0.3 1.0.4
total-gdpr-compliance-lite 1.0.4
kakaretso-sehlopha-lite 1.1.1 1.1.2
qetellong ea mongoli-box-lite 1.1.2 1.1.3
1.5.0 1.5.1
woo-badge-designer-lite 1.1.0 1.1.1
wp-1-slider 1.2.9 1.3.0
wp-blog-manager-lite 1.1.0 1.1.2
wp-maikutlo-moqapi-lite 2.0.3 2.0.4
lintlha tsa wp-cookie-mosebelisi 1.0.7 1.0.8
wp-facebook-review-showcase-lite 1.0.9
wp-fb-messenger-button-lite 2.0.7
wp-floating-menu 1.4.4 1.4.5
wp-media-manager-lite 1.1.2 1.1.3
wp-popup-banners 1.2.3 1.2.4
wp-popup-lite 1.0.8
wp-sehlahisoa-gallery-lite 1.1.1

Source: opennet.ru

Backdoor ho 93 AccessPress plugins le lihlooho tse sebelisoang libakeng tse likete tse 360

Eketsa ka tlhaloso hlakola karabo