{"id":20940,"date":"2024-01-31T06:02:41","date_gmt":"2024-01-31T06:02:41","guid":{"rendered":"https:\/\/afreeurl.com\/?p=20940"},"modified":"2024-01-31T06:02:44","modified_gmt":"2024-01-31T06:02:44","slug":"the-security-version-of-wordpress-6-4-3-fixes-two-vulnerabilities","status":"publish","type":"post","link":"https:\/\/afreeurl.com\/?p=20940","title":{"rendered":"The security version of WordPress 6.4.3 fixes two vulnerabilities"},"content":{"rendered":"<p><\/p>\n<p>WordPress announced a security release 6.4.3 in response to two vulnerabilities discovered in WordPress plus 21 bug fixes.<\/p>\n<h2>PHP file upload bypass<\/h2>\n<p>The first patch is for a PHP file upload bypass vulnerability using the plugin installer.  It is a flaw in WordPress that allows an attacker to upload PHP files via the plugin and theme loader.  PHP is a programming language used to generate HTML.  PHP files can also be used to inject malware into a website.<\/p>\n<p>However, this vulnerability is not as bad as it seems because the attacker needs administrator level permissions to execute this attack.<\/p>\n<h2>PHP object injection vulnerability<\/h2>\n<p>According to WordPress, the second patch is for a remote code execution POP string vulnerability that could allow an attacker to execute code remotely.<\/p>\n<p>An RCE POP Chains vulnerability usually means that there is a flaw that allows an attacker, usually by manipulating input that the WordPress site deserializes, to execute arbitrary code on the server.<\/p>\n<p>Deserialization is the process where data is converted into a serialized format (like a text string) deserialization is the part when it is converted back to its original form.<\/p>\n<p>Wordfence describes this vulnerability as a PHP object injection vulnerability and does not mention the RCE POP Chains part.<\/p>\n<p><strong>This is how Wordfence works <a href=\"https:\/\/www.wordfence.com\/blog\/2024\/01\/the-wordpress-6-4-3-security-update-what-you-need-to-know\/\" target=\"_blank\" rel=\"noopener\">describes the second WordPress vulnerability<\/a>:<\/strong><\/p>\n<p>&#8220;The second patch addresses the way options are stored, first sanitizing them before checking the option&#8217;s data type, arrays and objects are serialized, as well as already serialized data, which is re-serialized .Although this already happens when the options are updated, it was not performed during site installation, initialization, or update.<\/p>\n<p>This is also a low-threat vulnerability, as an attacker would need administrator-level permissions to launch a successful attack.<\/p>\n<p>However, the officer <a href=\"https:\/\/wordpress.org\/news\/2024\/01\/wordpress-6-4-3-maintenance-and-security-release\/\" target=\"_blank\" rel=\"noopener\">WordPress announcement of security and maintenance release<\/a> recommends updating your WordPress installation:<\/p>\n<p>&#8220;As this is a security release, it is recommended that you update your sites immediately. Backports are also available for other major WordPress versions, 4.1 and later.&#8221;<\/p>\n<h2>Bug fixes in WordPress core<\/h2>\n<p><strong>This release also fixes five bugs in WordPress core:<\/strong><\/p>\n<p>Text not highlighted when editing page in Chrome Dev and Canary Update latest default PHP version used in local Docker environment for older branches wp-login.php: Login messages\/errors Deprecated print_emoji_styles produced during embedding of attached pages are only disabled for users who are logged in<\/p>\n<p>In addition to the five fixes above in core, there are 16 additional bug fixes in the block editor.<\/p>\n<p>Read the W<a href=\"https:\/\/wordpress.org\/documentation\/wordpress-version\/version-6-4-3\/\" target=\"_blank\" rel=\"noopener\">WordPress Security and Maintenance Release Announcement<\/a><\/p>\n<p><a href=\"https:\/\/make.wordpress.org\/core\/2024\/01\/25\/wordpress-6-4-3-rc1-is-now-available\/\" target=\"_blank\" rel=\"noopener\">WordPress descriptions of each of the 21 bug fixes<\/a><\/p>\n<p><strong>Wordfence&#8217;s description of the vulnerabilities:<\/strong><\/p>\n<p><a href=\"https:\/\/www.wordfence.com\/blog\/2024\/01\/the-wordpress-6-4-3-security-update-what-you-need-to-know\/\" target=\"_blank\" rel=\"noopener\">The WordPress 6.4.3 Security Update: What You Need to Know<\/a><\/p>\n<p>Featured image by Shutterstock\/Roman Samborskyi<\/p>\n<p>[ad_2]<br \/>\n<br \/><a href=\"https:\/\/www.searchenginejournal.com\/wordpress-6-4-3-security-release-fixes-two-vulnerabilities\/506844\/\" target=\"_blank\" rel=\"noopener\">Source link <\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>WordPress announced a security release 6.4.3 in response to two vulnerabilities discovered in WordPress plus 21 bug fixes. PHP file upload bypass The first patch is for a PHP file upload bypass vulnerability using the plugin installer. It is a flaw in WordPress that allows an attacker to upload PHP files via the plugin and theme loader. PHP is a programming language used to generate HTML. PHP files can also be used to inject malware&#8230; <\/p>\n","protected":false},"author":1,"featured_media":20941,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-20940","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-seo-news"],"_links":{"self":[{"href":"https:\/\/afreeurl.com\/index.php?rest_route=\/wp\/v2\/posts\/20940","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afreeurl.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afreeurl.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afreeurl.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afreeurl.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=20940"}],"version-history":[{"count":1,"href":"https:\/\/afreeurl.com\/index.php?rest_route=\/wp\/v2\/posts\/20940\/revisions"}],"predecessor-version":[{"id":20942,"href":"https:\/\/afreeurl.com\/index.php?rest_route=\/wp\/v2\/posts\/20940\/revisions\/20942"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/afreeurl.com\/index.php?rest_route=\/wp\/v2\/media\/20941"}],"wp:attachment":[{"href":"https:\/\/afreeurl.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=20940"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afreeurl.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=20940"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afreeurl.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=20940"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}