Hackers Exploit Critical Unauthenticated Arbitrary File Upload Vulnerability in Royal Elementor Plugin

Bijay Pokharel, October 17, 2023 0 1 min read

A critical unauthenticated arbitrary file upload vulnerability has been discovered in the Royal Elementor Addons and Templates plugin for WordPress.

This vulnerability allows attackers to upload arbitrary files to vulnerable websites without having to authenticate.

A majority of the attacks appear to be coming from just the following three IP Addresses:

65.21.22.78 with 33,255 attacks blocked.
2a01:4f9:3080:4eea::2 with 12,289 attacks blocked.
135.181.181.50 with 206 attacks blocked.

According to Wordfence researchers, it appears that attackers have been attempting to place files named b1ack.p$hp, which has an md5 hash of 1635f34d9c1da30ff5438e06d3ea6590 and can be used to place additional PHP files on the site, as well as wp.ph$p which has an md5 hash of bac83f216eba23a865c591dbea427f22 and inserts a malicious administrator.

b1ack.p$hp contains the following code:

wp.ph$p contains the following code:

The Royal Elementor Addons and Templates plugin has over 200,000 active installations, which means that a large number of websites are potentially vulnerable to this attack.

READ

Crypto Thefts Surge to $1.4 Billion in H1 2024, Researchers Report

IT NEWS & UPDATES

Google Urges US Lawmakers Not to Ban Teenagers from Social Media

IT NEWS & UPDATES

WhatsApp Enables Passwordless Logins with Passkeys for Android Users

Bijay Pokharel

Bijay Pokharel is the creator and owner of Abijita.com. He is a freelance technology writer focusing on all things pertaining to Cyber Security. The topics he writes about include malware, vulnerabilities, exploits, internet defense, women's safety and privacy, as well as research and innovation in information security. He is a tech enthusiast, keen learner, rational and cool person in his professional activities and challenges.

Subscribe

Cybersecurity Newsletter

You have Successfully Subscribed!

Recent Posts

Apple Approves Epic Games’ Marketplace App After Initial Rejections

Crypto Thefts Surge to $1.4 Billion in H1 2024, Researchers Report

YouTube’s Eraser Tool Gets AI Upgrade, Simplifying Copyright Issues for Creators

French and Spanish Authorities Disrupt Chinese Money Laundering Network

European Commission Asks Amazon to Furnish Details over Recommender Algorithms, Ads Transparency

SpaceX’s Polaris Dawn To Soon Drive Crew to 1st-ever ‘All-Civilian’ Spacewalk

Subscribe

Cybersecurity Newsletter

You have Successfully Subscribed!

SIGN UP FOR NEWSLETTERS

Please confirm your email address.

Subscribe

Cybersecurity Newsletter

You have Successfully Subscribed!

Hackers Exploit Critical Unauthenticated Arbitrary File Upload Vulnerability in Royal Elementor Plugin

Bijay Pokharel

Related posts

Safe-Inet VPN Service Shut Down By Law Enforcement

One Of The Darkweb’s Largest Cryptocurrency Laundromats Washed Out

500k Fortinet VPN Accounts Credentials Leaked Online

Neopets Data Breach Exposes 69 Million Members’ Personal Info

Unrestricted File Upload Vulnerability Found On Contact Form 7

Critical Vulnerability Patched in Ninja Forms WordPress Plugin

Leave a Reply Cancel reply

Recent Posts

Apple Approves Epic Games’ Marketplace App After Initial Rejections

Crypto Thefts Surge to $1.4 Billion in H1 2024, Researchers Report

YouTube’s Eraser Tool Gets AI Upgrade, Simplifying Copyright Issues for Creators

French and Spanish Authorities Disrupt Chinese Money Laundering Network

European Commission Asks Amazon to Furnish Details over Recommender Algorithms, Ads Transparency

SpaceX’s Polaris Dawn To Soon Drive Crew to 1st-ever ‘All-Civilian’ Spacewalk

Subscribe

Cybersecurity Newsletter

You have Successfully Subscribed!

SIGN UP FOR NEWSLETTERS

Please confirm your email address.