A critical vulnerability has been discovered in one of the most popular plugins of WordPress that puts more than one Million websites at risk of being completely vulnerable to attacks.
The vulnerability actually resides in most versions of a WordPress plugin called Wettable Powder Slimstat (WP-Slimstat). While there are more than 70 million websites on the Internet currently running WordPress, more than 1.3 Million of them use the WP-Slimstat Plugin, making it one of the popular plugins of WordPress for powerful real-time web analytic.
All the WP-Slimstat versions prior to the latest release of Slimstat 3.9.6 contain an easily guessable 'secret' key which is used to sign data sent to and from the visiting end-user computers, explained in a blog post published Tuesday by Web security firm Sucuri.
Once the weak 'secret' key is broken, an attacker could perform an SQL injection attack against the target website in order to grab highly sensitive information from victims database, including encrypted passwords and the encryption keys used to remotely administrate websites.
The WP-Slimstat 'secret' key is just an MD5 hash version of the plugins installation timestamp. With the use of sites like Internet Archive, a hacker could easily identify the year a target vulnerable website was put on the Internet.
This would leave an attacker with about 30 Million values to test, that could be completed in about 10 minutes with most modern CPUs. Once the secret key has been detected, the attacker can use the key to tug sensitive data out of the database.
Users who run their websites on the WordPress and have this popular WP-Slimstat plugin installed are being cautioned to upgrade their websites immediately in order to protect their websites from this dangerous vulnerability.
The vulnerability actually resides in most versions of a WordPress plugin called Wettable Powder Slimstat (WP-Slimstat). While there are more than 70 million websites on the Internet currently running WordPress, more than 1.3 Million of them use the WP-Slimstat Plugin, making it one of the popular plugins of WordPress for powerful real-time web analytic.
All the WP-Slimstat versions prior to the latest release of Slimstat 3.9.6 contain an easily guessable 'secret' key which is used to sign data sent to and from the visiting end-user computers, explained in a blog post published Tuesday by Web security firm Sucuri.
Once the weak 'secret' key is broken, an attacker could perform an SQL injection attack against the target website in order to grab highly sensitive information from victims database, including encrypted passwords and the encryption keys used to remotely administrate websites.
The WP-Slimstat 'secret' key is just an MD5 hash version of the plugins installation timestamp. With the use of sites like Internet Archive, a hacker could easily identify the year a target vulnerable website was put on the Internet.
This would leave an attacker with about 30 Million values to test, that could be completed in about 10 minutes with most modern CPUs. Once the secret key has been detected, the attacker can use the key to tug sensitive data out of the database.
Users who run their websites on the WordPress and have this popular WP-Slimstat plugin installed are being cautioned to upgrade their websites immediately in order to protect their websites from this dangerous vulnerability.
