WordPress Insertify plugin <= 1.1.4 - CSRF to Remote Code Execution vulnerability
翻訳中…プラットフォーム
wordpress
コンポーネント
insertify
修正版
1.1.5
CVE-2024-54372 describes a critical Remote Code Execution (RCE) vulnerability affecting the Insertify WordPress plugin. This vulnerability allows attackers to inject code through Cross-Site Request Forgery (CSRF), potentially leading to complete system compromise. The vulnerability impacts versions of Insertify up to and including 1.1.4, with a fix available in version 1.1.5.
このCVEがあなたのプロジェクトに影響するか確認
依存関係ファイルをアップロードすれば、このCVEや他のCVEがあなたに影響するか即座にわかります。
影響と攻撃シナリオ翻訳中…
The impact of this RCE vulnerability is severe. A successful exploit allows an attacker to execute arbitrary code on the WordPress server hosting the Insertify plugin. This could lead to complete website takeover, data theft, defacement, or the installation of malware. Given the plugin's functionality (inserting content), an attacker could potentially inject malicious code into the website's database or modify core files, leading to widespread compromise. The CSRF aspect means an attacker doesn't necessarily need to authenticate to exploit the vulnerability, making it particularly dangerous.
悪用の状況翻訳中…
CVE-2024-54372 was publicly disclosed on December 16, 2024. While no public proof-of-concept (PoC) code has been widely released, the RCE nature and ease of CSRF exploitation suggest a high probability of exploitation. The vulnerability is not currently listed on CISA KEV, but its critical severity warrants close monitoring. Active campaigns targeting WordPress plugins are common, so vigilance is essential.
リスク対象者翻訳中…
Websites using the Insertify plugin, particularly those with vulnerable versions (≤1.1.4), are at significant risk. Shared hosting environments are especially vulnerable as they often have limited control over plugin updates. WordPress sites with weak CSRF protection are also at increased risk.
検出手順翻訳中…
• wordpress / composer / npm:
grep -r 'insertify_plugin_url' /var/www/html/*• wordpress / composer / npm:
wp plugin list --status=inactive | grep Insertify• wordpress / composer / npm:
wp plugin update --all• generic web:
curl -I https://your-wordpress-site.com/wp-content/plugins/insertify/ | grep -i 'insertify'攻撃タイムライン
- Disclosure
disclosure
脅威インテリジェンス
エクスプロイト状況
EPSS
0.07% (22% パーセンタイル)
CISA SSVC
CVSS ベクトル
これらのメトリクスの意味は?
- Attack Vector
- ネットワーク — インターネット経由でリモートから悪用可能。物理・ローカルアクセス不要。
- Attack Complexity
- 低 — 特別な条件不要。安定して悪用可能。
- Privileges Required
- なし — 認証不要。資格情報なしで悪用可能。
- User Interaction
- 必要 — 被害者がファイルを開く、リンクをクリックするなどのアクションが必要。
- Scope
- 変化あり — 攻撃が脆弱なコンポーネントを超えて他のシステムに波及可能。
- Confidentiality
- 高 — 機密性の完全喪失。全データが読み取り可能。
- Integrity
- 高 — 任意のデータの書き込み・変更・削除が可能。
- Availability
- 低 — 部分的または断続的なサービス拒否。
影響を受けるソフトウェア
弱点分類 (CWE)
タイムライン
- 予約済み
- 公開日
- EPSS 更新日
緩和策と回避策翻訳中…
The primary mitigation for CVE-2024-54372 is to immediately upgrade the Insertify plugin to version 1.1.5 or later. If upgrading is not immediately feasible due to compatibility issues or breaking changes, consider temporarily disabling the Insertify plugin to prevent exploitation. While a direct WAF rule is difficult to implement due to the CSRF nature, implementing strict CSRF protection on all WordPress admin endpoints is a general best practice. Regularly review WordPress plugin installations and ensure they are from trusted sources.
修正方法翻訳中…
Actualice el plugin Insertify a la última versión disponible. La vulnerabilidad CSRF permite la ejecución remota de código, por lo que es crucial aplicar la actualización lo antes posible. Si no hay una versión corregida disponible, considere deshabilitar el plugin temporalmente hasta que se publique una actualización.
CVEセキュリティニュースレター
脆弱性分析と重要アラートをメールでお届けします。
よくある質問翻訳中…
What is CVE-2024-54372 — RCE in Insertify WordPress Plugin?
CVE-2024-54372 is a critical Remote Code Execution vulnerability in the Insertify WordPress plugin, allowing attackers to inject code via CSRF and potentially take control of the website.
Am I affected by CVE-2024-54372 in Insertify WordPress Plugin?
You are affected if you are using Insertify versions 1.1.4 or earlier. Check your plugin version and upgrade immediately.
How do I fix CVE-2024-54372 in Insertify WordPress Plugin?
Upgrade the Insertify plugin to version 1.1.5 or later. If immediate upgrade is not possible, temporarily disable the plugin.
Is CVE-2024-54372 being actively exploited?
While no widespread exploitation has been confirmed, the vulnerability's severity and ease of exploitation suggest a high probability of active campaigns.
Where can I find the official Insertify advisory for CVE-2024-54372?
Refer to the Insertify plugin's official website or WordPress plugin repository for the latest advisory and update information.