"Multiple Flaws Found in the Avada WordPress Theme and Plugin"

Multiple vulnerabilities have recently been identified in the widely used Avada theme and its accompanying Avada Builder plugin.  Security researchers at Patchstack discovered the flaws.  The researchers noted the Avada Builder plugin exhibits two weaknesses.  The first is an Authenticated SQL Injection (CVE-2023-39309).  The researchers stated that by exploiting this vulnerability, attackers possessing authenticated access could breach sensitive data and potentially execute remote code.  The second vulnerability is a Reflected Cross-Site Scripting (XSS) vulnerability (CVE-2023-39306), enabling unauthenticated attackers to pilfer sensitive information and potentially heighten their privileges on impacted WordPress sites.  Patchstack also discovered various vulnerabilities in the Avada theme.  First among them is a Contributor+ Arbitrary File Upload vulnerability (CVE-2023-39307).  With this vulnerability, contributors gain the ability to upload arbitrary files, which may encompass detrimental PHP files, thereby enabling remote code execution and compromising site integrity.  The researchers also found an Author+ flaw (CVE-2023-39312).  Here, the researchers were able to attain the capability to upload malevolent zip files, thereby introducing the potential for remote code execution and vulnerabilities within the site.  The researchers stated that the last vulnerability discovered is the Contributor+ Server-Side Request Forgery (SSRF) vulnerability (CVE-2023-39313).  Through this loophole, Contributors can instigate requests to internal services on the WordPress server, thereby potentially initiating unauthorized actions or data access within the organizational framework.  The researchers noted that the vulnerabilities were reported to the Avada vendor on July 6, 2023, leading to the release of patched versions on July 11, 2023.  To address these vulnerabilities, users are urged to update the Avada Builder plugin to version 3.11.2 and the Avada theme to version 7.11.2.  The researchers noted that ensuring prompt updates is crucial to maintain website security.

 

Infosecurity reports: "Multiple Flaws Found in the Avada WordPress Theme and Plugin"

Submitted by Anonymous on