Deze week kunnen de totale gepatchte en ongepatchte kwetsbaarheden van invloed zijn op meer dan 9 miljoen WordPress-sites. Er zijn 84 plug-in kwetsbaarheden en één thema kwetsbaarheid met beveiligingspatches beschikbaar, dus voer die updates uit als u deze plug-ins gebruikt! Daarnaast zijn er 39 plug-in kwetsbaarheden en 3 thema kwetsbaarheden waarvoor nog geen patches beschikbaar zijn. Als u een van deze niet-gepatchte plug-ins of thema’s gebruikt, controleer dan de bedoelingen en voortgang van de leveranciers voor een beveiligingsrelease. Als er geen patch beschikbaar is of een kwetsbare plug-in of thema is “gesloten” (uit de WordPress.org repository verwijderd), overweeg dan om het uit te schakelen en gebruik te maken van alternatieve oplossingen

De inhoud van WordPress Vulnerability Report 22 maart 2023

1. WordPress Core News
2. WordPress Plugin Vulnerabilities With Patches
   1. UpdraftPlus PRO
   2. UpdraftPlus
   3. Slider, Gallery, And Carousel By MetaSlider – Responsive WordPress Plugin
   4. Easy Table Of Contents
   5. Happy Addons For Elementor
   6. Squirrly SEO (Peaks)
   7. Squirrly SEO (Peaks)
   8. WP Mail Logging
   9. WPML
   10. WordPress Ping Optimizer
   11. Bookly
   12. User Registration
   13. Exclusive Addons For Elementor
   14. Ecwid Ecommerce Shopping Cart
   15. Subscribe2 – Form, Email Subscribers & Newsletters
   16. WP User Frontend – Registration, User Profile, Membership, Content Restriction, User Directory, And Frontend Post Submission Plugin
   17. Advanced Product Labels For WooCommerce
   18. Branda
   19. Dashboard Welcome For Elementor
   20. Load More Products For WooCommerce
   21. Min And Max Quantity For WooCommerce
   22. Product Gallery Slider For WooCommerce
   23. WP Simple Shopping Cart
   24. Store Locator WordPress
   25. Contact Form 7 – PayPal & Stripe Add-On
   26. Contact Form Email
   27. ECommerce Product Catalog
   28. Hotel Booking Lite
   29. Slideshow Gallery LITE
   30. Slideshow Gallery LITE
   31. Woostify Sites Library
   32. WP Dark Mode – Best Dark Mode & Social Sharing Plugin For WordPress
   33. WP VR – 360 Panorama And Virtual Tour Builder For WordPress
   34. Fluid Checkout For WooCommerce – Lite
   35. Event Manager For WooCommerce
   36. Event Manager And Tickets Selling Plugin For WooCommerce
   37. Team Member – Team With Slider
   38. SMTP2GO
   39. ProfileGrid
   40. Brands For WooCommerce
   41. Contact Form 7 Redirect & Thank You Page
   42. Boostify Header Footer Builder For Elementor
   43. Modern Footnotes
   44. Open Graphite
   45. W4 Post List
   46. Grid List View For WooCommerce
   47. Cart Notices For WooCommerce
   48. Click To Top
   49. Force First And Last Name As Display Name
   50. Gallery Box
   51. Magical Posts Display – Elementor & Gutenberg Posts Blocks
   52. WePOS – Point Of Sale (POS) For WooCommerce
   53. WP Email Capture
   54. Cart Lift – Abandoned Cart Recovery For WooCommerce And EDD
   55. WP Markdown Editor (Formerly Dark Mode)
   56. GS Testimonial Slider
   57. Product Tabs Manager For WooCommerce
   58. Product Watermark For WooCommerce
   59. Stylish Cost Calculator
   60. Terms And Conditions Popup For WooCommerce
   61. Webinar And Video Conference With Jitsi Meet
   62. Wiremo – Product Reviews For WooCommerce
   63. Wp Edit Password Protected – Create Member/User Only Page & Design Password Protected Form
   64. Products Suggestions For WooCommerce
   65. Calendar Event Multi View
   66. HT Feed
   67. Dynamics 365 Integration
   68. Open RDW Kenteken Voertuiginformatie
   69. Pagination Styler For WooCommerce
   70. Products Compare For WooCommerce
   71. Sales Report For WooCommerce
   72. Sequential Order Numbers For WooCommerce
   73. Sheets To WP Table Live Sync
   74. Userlike – WordPress Live Chat Plugin
   75. WordPress WP Express Checkout
   76. WordPress GamiPress – Youtube Integration
   77. Branded Social Images
   78. Enhanced Plugin Admin
   79. WordPress Auto Rename Media On Upload
   80. WSB Brands
   81. WordPress Amazon S3 Plugin
   82. Cyberus Key
   83. WordPress Drag And Drop Multiple File Upload PRO – Contact Form 7 Standard
   84. WordPress WooCommerce Multiple Customer Addresses & Shipping
3. WordPress Plugin Vulnerabilities – No Known Fix
   1. Slide Anything
   2. Custom Field Template
   3. Website Monetization By MageNet
   4. Read More Without Refresh
   5. WP Shortcode By MyThemeShop
   6. PB SEO Friendly Images Plugin
   7. Import External Images
   8. Disqus Conditional Load
   9. ConvertBox Auto Embed WordPress Plugin
   10. Weather Station
   11. Simple Mobile URL Redirect
   12. WordPress Mortgage Calculator Estatik
   13. Update Image Tag Alt Attribute
   14. Return And Warranty Management System For WooCommerce
   15. WP Job Portal – A Complete Job Board
   16. Bangladeshi Payment Gateways
   17. Custom Options Plus
   18. Google XML Sitemap For Mobile
   19. Lazy Social Comments
   20. BuddyPress Builder For Elementor – BuddyBuilder
   21. Vertical Scroll Recent Post
   22. Product Category Slider For WooCommerce
   23. WP Content Filter – Censor All Offensive Content From Your Site
   24. BigContact Contact Page
   25. Bulk Resize Media
   26. JS Job Manager
   27. Kanban Boards For WordPress
   28. Post Grid, Slider & Carousel Ultimate – With Shortcode, Gutenberg Block & Elementor Widget
   29. PT Addons For Elementor Lite
   30. Elementor Addons, Widgets And Enhancements – Stax
   31. Surbma | GDPR Proof Cookie Consent & Notice Bar
   32. Challan – PDF Invoice & Packing Slip For WooCommerce
   33. TreePress – Easy Family Trees & Ancestor Profiles
   34. VigilanTor
   35. Backup Bank: WordPress Backup Plugin
   36. Be POPIA Compliant
   37. Simple Custom Author Profiles
   38. WordPress WP Popup Banners
   39. WP Simple Events
4. WordPress Theme Vulnerabilities
   1. Real Estate Directory
   2. NewsMag
   3. Mediciti Lite
   4. Chankhe

Lees het rapport van iThemes security voor meer informatie over deze zwaktes.