Hacker nutzen Zero-Day in WordPress BackupBuddy Plugin in ~5 Millionen Versuchen aus

A zero-day flaw in a WordPress plugin called BackupBuddy is being actively exploited, WordPress security company Wordfence has disclosed.

“This vulnerability makes it possible for unauthenticated users to download arbitrary files from the affected site which can include sensitive information,” it sagte.

BackupBuddy allows users to back up their entire WordPress installation from within the dashboard, including theme files, pages, posts, widgets, users, and media files, among others.

The plugin is estimated to have around 140,000 active installations, with the flaw (CVE-2022-31474, CVSS score: 7.5) affecting versions 8.5.8.0 to 8.7.4.1. It’s been addressed in version 8.7.5 released on September 2, 2022.

The issue is rooted in the function called “Local Directory Copy” that’s designed to store a local copy of the backups. According to Wordfence, the vulnerability is the result of an insecure implementation, which enables an unauthenticated threat actor to download any arbitrary file on the server.

Additional details about the flaw have been withheld in light of active in-the-wild abuse and its ease of exploitation.

“This vulnerability could allow an attacker to view the contents of any file on your server that can be read by your WordPress installation,” the plugin’s developer, iThemes, sagte. “This could include the WordPress wp-config.php file and, depending on your server setup, sensitive files like /etc/passwd.”

Wordfence noted that the targeting of CVE-2022-31474 commenced on August 26, 2022, and that it has blocked nearly five million attacks in the intervening time period. Most of the intrusions have attempted to read the below files –

/etc/passwd
/wp-config.php
.my.cnf
.accesshash

Users of the BackupBuddy plugin are advised to upgrade to the latest version. Should users determine that they may have been compromised, it’s recommended to reset the database password, change WordPress Salts, and rotate API keys stored in wp-config.php.

https://thehackernews.com/2022/09/hackers-exploit-zero-day-in-wordpress.html?

Kommentar verfassen Kommentieren abbrechen

London, GB

1:45 pm, Mai 18, 2025

15°C

L: 14° | H: 17°

Fühlt sich an wie 14°C° wenige Wolken

Luftfeuchtigkeit: 61 %

Druck: 1020 mb

Wind: 5 mph NNE

Windböe: 6 mph

UV-Index: 0

Niederschlag: 0 mm

Wolken: 17%

Regen Chance: 0%

Sichtbarkeit: 10 km

Sonnenaufgang: 5:04 am

Sonnenuntergang: 8:49 pm

TäglichStündlich

Tägliche VorhersageStündliche Vorhersage

Today 10:00 pm

14° | 17°°C 0 mm 0% 7 mph 66 % 1020 mb 0 mm/h

Tomorrow 10:00 pm

11° | 19°°C 0.2 mm 20% 12 mph 82 % 1022 mb 0 mm/h

Di. Mai 20 10:00 pm

9° | 21°°C 0 mm 0% 8 mph 71 % 1023 mb 0 mm/h

Mi. Mai 21 10:00 pm

12° | 18°°C 1 mm 100% 7 mph 89 % 1020 mb 0 mm/h

Do. Mai 22 10:00 pm

9° | 19°°C 0 mm 0% 8 mph 59 % 1022 mb 0 mm/h

Today 4:00 pm

16° | 18°°C 0 mm 0% 7 mph 56 % 1020 mb 0 mm/h

Today 7:00 pm

16° | 17°°C 0 mm 0% 6 mph 54 % 1019 mb 0 mm/h

Today 10:00 pm

13° | 13°°C 0 mm 0% 6 mph 66 % 1020 mb 0 mm/h

Tomorrow 1:00 am

12° | 12°°C 0 mm 0% 7 mph 69 % 1020 mb 0 mm/h

Tomorrow 4:00 am

11° | 11°°C 0 mm 0% 6 mph 82 % 1020 mb 0 mm/h

Tomorrow 7:00 am

12° | 12°°C 0 mm 0% 7 mph 73 % 1021 mb 0 mm/h

Tomorrow 10:00 am

16° | 16°°C 0 mm 0% 8 mph 55 % 1021 mb 0 mm/h

Tomorrow 1:00 pm

19° | 19°°C 0.2 mm 20% 12 mph 42 % 1021 mb 0 mm/h

Name	Preis	24H (%)
Bitcoin(BTC)	€93,046.34	0.82%
Ethereum(ETH)	€2,240.95	0.75%
Fesseln(USDT)	€0.90	0.00%
XRP(XRP)	€2.14	1.61%
Solana(SOL)	€153.14	1.82%
USDC(USDC)	€0.90	-0.01%
Dogecoin(DOGE)	€0.199910	3.47%
Shiba Inu(SHIB)	€0.000013	3.40%
Pepe(PEPE)	€0.000012	7.36%
Peanut das Eichhörnchen(PNUT)	€0.305589	13.35%

Hacker nutzen Zero-Day in WordPress BackupBuddy Plugin in ~5 Millionen Versuchen aus

Teilen:

Kommentar verfassen Kommentieren abbrechen

Verbindung zum Dienstprogramm

Nützlicher Link

Newsletter

Folgen Sie uns