GiveWP, a popular donation plugin for WordPress, has recently addressed a critical vulnerability that could have had severe consequences for users. The vulnerability, discovered by researcher Villu Orav, allowed attackers to execute arbitrary code remotely and delete files. This issue has been classified as a “Critical” concern, with a CVSS score of 10.0, emphasizing the urgency of updating to the latest version.
The GiveWP plugin, which is part of the Liquid Web family of products, boasts over 100,000 active installs. This widespread usage makes it a prime target for potential attackers seeking to exploit vulnerabilities. However, the plugin’s developers acted swiftly to resolve the issue and released a patch in version 3.14.2 on August 7, 2024.
The vulnerability was first reported through the Wordfence Bug Bounty Program, which offers rewards to researchers for finding and reporting vulnerabilities privately. In this case, Villu Orav received a bounty of $4,998.00 for discovering the vulnerability in GiveWP. This program, launched by Wordfence in November 2023, serves as an incentive for researchers to contribute to the security of WordPress plugins and ensure the safety of users’ websites.
According to Wordfence, the vulnerability in GiveWP stemmed from a PHP Object Injection in all versions up to 3.14.1. This vulnerability was possible due to the deserialization of untrusted input from the ‘give_title’ parameter, allowing unauthenticated attackers to inject a PHP Object. Additionally, the presence of a POP chain enabled attackers to execute code remotely and delete arbitrary files. The severity of this vulnerability was reinforced by its classification as “Critical” and the maximum CVSS score of 10.0.
For users of the GiveWP plugin, it is crucial to update to the latest version, 3.14.2, to ensure the security of their websites. By promptly applying the patch, users can protect themselves against potential attacks and safeguard their sensitive data. The quick response from the GiveWP development team, in collaboration with Wordfence and the WordPress.org Security Team, demonstrates their commitment to providing a secure and reliable plugin for the WordPress community.
In conclusion, the GiveWP plugin has successfully addressed a critical vulnerability that could have had severe consequences for WordPress users. Through the efforts of the Wordfence Bug Bounty Program and the collaboration between security researchers and developers, a patch was released to mitigate the vulnerability. It is essential for users to update their GiveWP plugin to the latest version to ensure the security of their websites and protect against potential attacks. By prioritizing security and promptly addressing vulnerabilities, the WordPress plugin community continues to provide a safe environment for website owners and users alike.
