Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin Social Auto Poster includes Backdoor Only if downloaded via the vendor website - CVE-2021-24867 - Vulnerability Database
WP Plugin Accesspress Facebook Auto Post

WordPress Plugin Social Auto Poster includes Backdoor Only if downloaded via the vendor website - CVE-2021-24867

Critical
Reference: CVE-2021-24867
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2021-24867
Title: WordPress Plugin Social Auto Poster includes Backdoor Only if downloaded via the vendor website
Overview:

WordPress Plugin Social Auto Poster only if downloaded via the vendor website contains suspicious code. Attackers can exploit this issue to perform a variety of actions. Successful attacks will compromise the affected application and possibly the webserver or computer. WordPress Plugin Social Auto Poster version 2.1.3 is vulnerable prior versions may also be affected.