WPBakery Page Builder Plugin’s Vulnerability Affects 1.6 Million WordPress Sites

July 19, 2022
2:37 pm

The WordPress plugin, which allows editing and customizing WordPress pages without writing any code, is vulnerable to a vulnerability that could allow file uploads without authentication. Threat actors hacking campaigns are targeting approximately 1.6 million WordPress sites through this vulnerable plugin.

The critical vulnerability, tracked as CVE-2021-24284, allows an unauthenticated threat actor to inject malicious Javascript code into sites using any version of the plugin, resulting in a complete site takeover. Additionally, a trojan malware called NDSW is deployed that will redirect visitors to phishing and harmful advertising pages by injecting malicious code into legitimate Javascript files.

WPBakery Page Builder Plugin's Vulnerability Affects 1.6 Million WordPress Sites

Due to the low probability of getting an update, it is recommended that the plugin be removed from use immediately, and alternatives should be found.

In addition, even if the plugin is not used, it is recommended that the IP addresses detected in the attack campaign be blocked from the security devices in use.

WPBakery Page Builder Plugin’s Vulnerability Affects 1.6 Million WordPress Sites

WPBakery Page Builder Plugin’s Vulnerability Affects 1.6 Million WordPress Sites

Share This:

About the Program

Become A Partner

Partner Portal Login

Blog

Events

Glossary

Threat Intelligence Researches

Reports

Security News

Whitepapers

Webinars

Platform Overview

Brand Protection

External Attack Surface Management

Cyber Threat Intelligence

Fraud Protection

Third-Party Risk Management

Talk to our experts to understand our product better. They'll help you tailor it to your needs.

About Us

Careers

News

Awards

Logos & Press Kit

Preventing Data Leakage

Phishing Monitoring

Account Takeover Detection

Stolen Credit Cards

Dark Web Monitoring

Remediation and Takedown

Customer Stories

Technology Integrations