Major Content Management Systems affected by Multiple vulnerabilities
THREAT LEVEL: Amber.
For a detailed advisory, download the pdf file here.
Several flaws in well-known content management systems WordPress and Drupal have been uncovered. A content management system, or CMS, is software that allows users to create, manage, and edit website content without requiring specialist technical skills. WordPress Core and Drupal’s CKEditor library both are impacted by these vulnerabilities.
The three vulnerabilities affecting WordPress Core versions prior to 5.9.2 could allow attackers to run arbitrary JavaScript in a user’s session by enticing a victim user into clicking a link. An attacker who successfully exploited these flaws may insert malicious JavaScript into a post, which would then execute when viewed by an administrator. Several methods, including the addition of new malicious administrative users and the injection of backdoors into a website, can be used to take over a site using JavaScript running in an administrator’s session.
CKEditor is an open-source HTML editor library which if configured with Drupal allows an attacker to generate or edit content by exploiting one or more Cross-Site Scripting (XSS) vulnerabilities.
The WordPress vulnerabilities have been fixed in the version 5.9.2 and the Drupal CKEditor vulnerabilities has been fixed in the versions 9.3.8 and 9.2.15. Organizations can patch these vulnerabilities using the patch links given below.
Potential MITRE ATT&CK TTPs are:TA0042: Resource DevelopmentTA0001: Initial AccessTA0009: CollectionTA0006: Credential AccessTA0002: ExecutionT1588: Obtain CapabilitiesT1588.006: Obtain Capabilities: VulnerabilitiesT1557: Adversary-in-the-MiddleT1190: Exploit Public-Facing ApplicationT1059: Command and Scripting InterpreterT1059.007: Command and Scripting Interpreter: JavaScript/JScriptT1204.001: User Execution: Malicious Link
Vulnerability Details
Patch Link
https://www.drupal.org/project/drupal/releases/9.2.15
https://www.drupal.org/project/drupal/releases/9.3.8
https://wordpress.org/news/2022/03/wordpress-5-9-2-security-maintenance-release/
References
What’s new on HivePro
Get through updates and upcoming events, and more directly in your inbox