Rapport hebdomadaire de Wordfence sur les vulnérabilités de WordPress (du 29 mai au 4 juin 2023)

116 vulnérabilités ont été divulguées dans le logiciel WordPress la semaine dernière.

La semaine dernière, 116 vulnérabilités ont été divulguées dans 88 plugins et 3 thèmes WordPress qui ont été ajoutées à la base de données des vulnérabilités de Wordfence Intelligence par l’équipe de Wordfence Threat Intelligence. Malheureusement, la semaine dernière encore, il y avait plus de vulnérabilités non corrigées que de vulnérabilités corrigées.

🎉 Nous tenons à remercier tout particulièrement les 35 chercheurs de vulnérabilités qui ont contribué à la sécurité de WordPress en divulguant ces vulnérabilités de manière responsable !

L’équipe a également déployé 4 nouvelles règles de pare-feu qui fournissent Wordfence Premium, Care et Response de Wordfence une meilleure protection contre les vulnérabilités. Les utilisateurs gratuits de Wordfence recevront cette protection après un délai de 30 jours.

 

Au Farweb, nous avons bien mis à jour les plugins et les thèmes concernés afin que ceux-ci ne soient plus un risque pour votre site Internet.

La mission du plugin de sécurité Wordfence Intelligence est de rendre des informations sur les vulnérabilités facilement accessibles à tous. Cette article a été traduit directement depuis leur newsletter.

Total Unpatched & Patched Vulnerabilities Last Week

Patch Status Number of Vulnerabilities
Unpatched 68
Patched 48

WordPress Plugins with Reported Vulnerabilities Last Week

Software Name Software Slug
Ajax Pagination and Infinite Scroll malinky-ajax-pagination
B2BKing — Ultimate WooCommerce Wholesale and B2B Solution — Wholesale Order Form, Catalog Mode, Dynamic Pricing & More b2bking-wholesale-for-woocommerce
BBS e-Popup bbs-e-popup
Blog-in-Blog blog-in-blog
Brizy – Page Builder brizy
CRM Perks Forms – WordPress Form Builder crm-perks-forms
CRM and Lead Management by vcita crm-customer-relationship-management-by-vcita
Call Now Accessibility Button accessibility-help-button
Call Now Icon Animate call-now-icon-animate
Cart2Cart: Magento to WooCommerce Migration cart2cart-magento-to-woocommerce-migration
Change WooCommerce Add To Cart Button Text change-woocommerce-add-to-cart-button-text
Chilexpress woo oficial chilexpress-oficial
Complianz – GDPR/CCPA Cookie Consent complianz-gdpr
Conditional shipping & Advanced Flat rate shipping rates / Flexible shipping for WooCommerce shipping advanced-free-flat-shipping-woocommerce
Constant Contact Forms constant-contact-forms
Contact Form Builder by vcita contact-form-with-a-meeting-scheduler-by-vcita
Contact Form and Calls To Action by vcita lead-capturing-call-to-actions-by-vcita
Custom Login Page | Temporary Users | Rebrand Login | Login Captcha feather-login-page
Directorist – WordPress Business Directory Plugin with Classified Ads Listings directorist
Disable WordPress Update Notifications and auto-update Email Notifications disable-update-notifications
Display post meta, term meta, comment meta, and user meta display-metadata
Donation Platform for WooCommerce: Fundraising & Donation Management wc-donation-platform
Download Monitor download-monitor
Dynamic QR Code Generator dynamic-qr-code-generator
Dynamic Visibility for Elementor dynamic-visibility-for-elementor
Event Registration Calendar By vcita event-registration-calendar-by-vcita
Extended Post Status extended-post-status
Favorites favorites
File Manager Advanced Shortcode WordPress file-manager-advanced-shortcode
Floating Action Button floating-action-button
Formidable Forms – Contact Form, Survey, Quiz, Calculator & Custom Form Builder formidable
GDPR Cookie Consent Notice Box cookie-consent-box
Google Fonts For WordPress free-google-fonts
Gravityforms gravityforms
Headless CMS headless-cms
Interactive Image Map Plugin – Draw Attention draw-attention
JS Job Manager js-jobs
Jetpack – WP Security, Backup, Speed, & Growth jetpack
Kanban Boards for WordPress kanban
Kebo Twitter Feed kebo-twitter-feed
LH Password Changer lh-password-changer
LWS Hide Login lws-hide-login
Login Configurator login-configurator
Nested Pages wp-nested-pages
Online Booking & Scheduling Calendar for WordPress by vcita meeting-scheduler-by-vcita
Online Payments – Get Paid with PayPal, Square & Stripe paypal-payment-button-by-vcita
Page Builder with Image Map by AZEXO page-builder-by-azexo
Photo Gallery by 10Web – Mobile-Friendly Image Gallery photo-gallery
Quick/Bulk Order Form for WooCommerce woocommerce-bulk-order-form
ReviewX – Multi-criteria Rating & Reviews for WooCommerce reviewx
Social Media Share Buttons & Social Sharing Icons ultimate-social-media-icons
Social Share, Social Login and Social Comments Plugin – Super Socializer super-socializer
SpamReferrerBlock spamreferrerblock
TPG Redirect tpg-redirect
TS Webfonts for さくらのレンタルサーバ ts-webfonts-for-sakura
Telegram Bot & Channel telegram-bot
Tutor LMS – eLearning and online course solution tutor
Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin ultimate-member
Uncanny Toolkit for LearnDash uncanny-learndash-toolkit
Unite Gallery Lite unite-gallery-lite
User Email Verification for WooCommerce woo-confirmation-email
VK Blocks vk-blocks
WOLF – WordPress Posts Bulk Editor and Manager Professional bulk-editor
WP Directory Kit wpdirectorykit
WP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting erp
WP Full Auto Tags Manager wp-full-auto-tags-manager
WP Hide Post wp-hide-post
WP Inventory Manager wp-inventory-manager
WP Report Post wp-report-post
WP User Switch wp-user-switch
WP-Cache.com wp-cachecom
WP-Cirrus wp-cirrus
WPC Smart Wishlist for WooCommerce woo-smart-wishlist
Web Directory Free web-directory-free
WooCommerce Box Office woocommerce-box-office
WooCommerce Checkout & Funnel Builder by CartFlows – Create High Converting Stores For WooCommerce cartflows
Woocommerce Order address Print woocommerce-order-address-print
WordPress CRM, Email & Marketing Automation for WordPress | Award Winner — Groundhogg groundhogg
WordPress NextGen GalleryView wordpress-nextgen-galleryview
WordPress Online Booking and Scheduling Plugin – Bookly bookly-responsive-appointment-booking-tool
WordPress Social Login wordpress-social-login
Wordapp wordapp
Worthy – VG WORT Integration für WordPress wp-worthy
Yandex Metrica Counter counter-yandex-metrica
bbPress Toolkit bbp-toolkit
bbp style pack bbp-style-pack
premium-addons-pro premium-addons-pro
wpForo Forum wpforo

WordPress Themes with Reported Vulnerabilities Last Week

Software Name Software Slug
HashOne hashone
Viral viral
Viral News viral-news

Source : https://www.wordfence.com/blog/2023/06/wordfence-intelligence-weekly-wordpress-vulnerability-report-may-29-2023-to-june-4-2023

Facebook
Twitter
LinkedIn
Retour vers le blog

Newsletter

Notre métier

Toutes nos expériences
Maintenance WordPress
Devis site Internet gratuit !

Plus d'articles

Vous avez un projet ?

Créer votre demande de devis en moins de 2 minutes !

Commencer votre demande de devis gratuit

Notre métier

Nos expériences

© Tout droit réservé 2010-2020

Facebook Twitter Linkedin Wordpress