漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Essentialplugin Plugins (Various Versions) - Injected Backdoor
Vulnerability Description
All plugins by Essentialplugin for WordPress are vulnerable to an injected backdoor in various versions. This is due to the plugin being sold to a malicious threat actor that embedded a backdoor in all of the plugin's they acquired. This makes it possible for the threat actor to maintain a persistent backdoor and inject spam into the affected sites.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
内嵌的恶意代码
Vulnerability Title
WordPress plugin Accordion and Accordion Slider 安全漏洞
Vulnerability Description
WordPress和WordPress plugin都是WordPress基金会的产品。WordPress是一套使用PHP语言开发的博客平台。该平台具有在基于PHP和MySQL的服务器上架设个人博客网站的功能。WordPress plugin是一个应用插件。 WordPress plugin Accordion and Accordion Slider 1.4.6版本存在安全漏洞,该漏洞源于插件被出售给恶意威胁行为者并嵌入了后门,可能导致威胁行为者维持持久后门并向受影响站点注入垃圾信息。
CVSS Information
N/A
Vulnerability Type
N/A