Home Hacking News Vulnerability In WordPress Plugin ThemeGrill Demo Importer Allowed Wiping of a Victim Website
Hacking NewsLatest Cyber Security News | Network Security HackingNewsVulnerabilities

Vulnerability In WordPress Plugin ThemeGrill Demo Importer Allowed Wiping of a Victim Website

by Abeerah Hashim
written by Abeerah Hashim
LayerSlider WordPress plugin had an SQL injection vulnerability

A WordPress plugin threatened the integrity of thousands of websites. This time, the vulnerability appeared in the ThemeGrill Demo Importer WordPress plugin. Exploiting this flaw could allow an adversary to entirely wipe a website Database.

ThemeGrill Demo Importer Vulnerability

Researchers from the WebARX have found a serious security vulnerability in the WordPress plugin ThemeGrill Demo Importer. The plugin facilitates in swift importing of the official themes demo content, widgets, and settings to the site.

As explained in their report, the flaw in the plugin could allow an unauthenticated attacker to meddle with the target website. Upon an exploit, the bug could let the attacker wipe the entire website and take over as admin.

There is a vulnerability that allows any unauthenticated user to wipe the entire database to its default state after which they are automatically logged in as an administrator.

Exploiting the vulnerability required the active installation of a ThemeGrill activated theme on the target site. Then the attacker could wipe the entire database, pulling back the site to its default state.

Whereas, for the attacker to gain access as an admin, having a user as ‘admin’ in the database was necessary. Though, this wasn’t a requisite for wiping the database.

Details about the technicalities of the flaw are available in the researchers’ post.

Patch Released – Update Now

Upon discovering the flaw, the WebARX team reached out to the ThemeGrill plugin developers to inform them of the flaw. Consequently, the developers patched the flaw on February 15, 2020.

The vulnerability primarily affected the plugin versions between 1.3.4 and 1.6.1. Eventually, developers released the patch with ThemeGrill Demo Importer plugin version 1.6.2.

While the plugin initially boasted an active installation of 200,000+, the count now seems fallen to 100,000+. Perhaps, some users may have uninstalled the plugin following the discovery of the vulnerability.

Nonetheless, it still remains a threat to thousands of websites. Therefore, the users must ensure updating their sites to the latest plugin versions.

Earlier, similar vulnerabilities also appeared in the WP Database Reset plugin that allowed wiping databases and takeover websites as admin.

Let us know your thoughts in the comments.

Abeerah has been a passionate blogger for several years with a particular interest towards science and technology. She is crazy to know everything about the latest tech developments. Knowing and writing about cybersecurity, hacking, and spying has always enchanted her. When she is not writing, what else can be a better pastime than web surfing and staying updated about the tech world! Reach out to me at: [email protected]

You may also like

Xiid SealedTunnel: Unfazed by Yet Another Critical Firewall...

Personal Data Exposed in Massive Global Hack: Understanding...

Guardz Welcomes SentinelOne as Strategic Partner and Investor...

Invision Community Vulnerabilities Risk E-Commerce Websites

Microsoft April Patch Tuesday Fixes Dozens of RCE...

Match Systems publishes report on the consequences of...

Cypago Announces New Automation Support for AI Security...

LayerSlider WordPress Plugin Vulnerability Affected Thousands Of Websites

OWASP Disclosed Data Breach Affecting Old Members

Center Identity Launches Patented Passwordless Authentication for Businesses