[WordPress Security] Wordfence Intelligence Weekly WordPress Vulnerability Report (Apr 10, 2023 to Apr 16, 2023) 

From: Wordfence <list_at_wordfence.com>
Date: Thu, 20 Apr 2023 06:26:14 -0700

69 vulnerabilities were disclosed in WordPress software last week. Find all the details in this email.

Wordfence-Logo.png (https://email.wordfence.com/e3t/Ctc/GC+113/cwG7R04/VVBB6g4P2zsTW7Gsn5w6Whp7_W33LWhB4ZBSqgN35KTBQ3pdqSV1-WJV7CgL4YW3PbCjk7wqNNZW8X8dr55QzmTLW44k4yw2S0QLqW2XHSdV2P5VKqW3GNjwp7QQ3GJW3xC70f77j-r0W4_QW058JqM1WW24LNFf3KgYMcVphnr-1pHg_tVyPYBX5YBMDDVR0Gf32BMGvcN5sfxyszvmbWW6_C9Zf5DhD6HW3_55hT1-q32gW2XBpqP5BNQyJW4RvZhm5k1smpN55X37tTcc0FW5NNvj95cMzwqW8kgLZ68MWc71W2655v78VVJvC3bG51 )

_WFI-Vuln-Report-WeekofApril10 (https://email.wordfence.com/e3t/Ctc/GC+113/cwG7R04/VVBB6g4P2zsTW7Gsn5w6Whp7_W33LWhB4ZBSqgN35KTBw5mNXLV3Zsc37CgBWTW2yrDcW7dHPckW6MJk2K3pwvhgV9nhPH7N5PMDW5brmX199RTlZW3ZHN3W3R4FV6W3nGgFd9dctDHW6Sw2Fw1G7QrHVlcfn36hJ5-MN70xYsBzTKl9W40zVZS5Hf9LwW4QvdvM8h1xNcN7KYNbtxVt0fW6M5H0L4mkS_LMKR1SbbLtrNW4GCSN810Xh5tW5pBl0_3Y3hBTW6c4zwy22SdBlW3C9sXz2ShtkMW3Vz4bg52PqqfW2R-Cs87rQ5npV-P-ts15RB69W8K34_89c-KHRVFwz7T7MkKRqW5H2XlB5CrHtYW5X3YHS3QG0zRW50VM8p9czdcTW2NgfhD7MTmZQN5vRdSYhr7pHW2CBnQp6HLFDCW6xq71V1t1_c9MVhm2gRXxvqW3txhmy3F3h52W4sGDsR3NfGW3W8rSH123Sj49H31z31 )

Last week, there were 69 vulnerabilities disclosed in 60 WordPress plugins and 4 WordPress themes (https://email.wordfence.com/e3t/Ctc/GC+113/cwG7R04/VVBB6g4P2zsTW7Gsn5w6Whp7_W33LWhB4ZBSqgN35KTBw5mNXLV3Zsc37CgBWTW2yrDcW7dHPckW6MJk2K3pwvhgV9nhPH7N5PMDW5brmX199RTlZW3ZHN3W3R4FV6W3nGgFd9dctDHW6Sw2Fw1G7QrHVlcfn36hJ5-MN70xYsBzTKl9W40zVZS5Hf9LwW4QvdvM8h1xNcN7KYNbtxVt0fW6M5H0L4mkS_LMKR1SbbLtrNW4GCSN810Xh5tW5pBl0_3Y3hBTW6c4zwy22SdBlW3C9sXz2ShtkMW3Vz4bg52PqqfW2R-Cs87rQ5npV-P-ts15RB69W8K34_89c-KHRVFwz7T7MkKRqW5H2XlB5CrHtYW5X3YHS3QG0zRW50VM8p9czdcTW2NgfhD7MTmZQN5vRdSYhr7pHW2CBnQp6HLFDCW6xq71V1t1_c9MVhm2gRXxvqW3txhmy3F3h52W4sGDsR3NfGW3W8rSH123Sj49H31z31 ) that have been added to the Wordfence Intelligence Vulnerability Database by the Wordfence Threat Intelligence Team.

🎉 We'd like to say a special thank you to the 32 Vulnerability Researchers that contributed to WordPress Security by responsibly disclosing those vulnerabilities!

The team also deployed 1 new firewall rule that provide Wordfence Premium, Care and Response customers with enhanced vulnerability protection. Wordfence free users will receive this protection after a 30 day delay.

Make sure to review the vulnerability report (https://email.wordfence.com/e3t/Ctc/GC+113/cwG7R04/VVBB6g4P2zsTW7Gsn5w6Whp7_W33LWhB4ZBSqgN35KTBw5mNXLV3Zsc37CgBWTW2yrDcW7dHPckW6MJk2K3pwvhgV9nhPH7N5PMDW5brmX199RTlZW3ZHN3W3R4FV6W3nGgFd9dctDHW6Sw2Fw1G7QrHVlcfn36hJ5-MN70xYsBzTKl9W40zVZS5Hf9LwW4QvdvM8h1xNcN7KYNbtxVt0fW6M5H0L4mkS_LMKR1SbbLtrNW4GCSN810Xh5tW5pBl0_3Y3hBTW6c4zwy22SdBlW3C9sXz2ShtkMW3Vz4bg52PqqfW2R-Cs87rQ5npV-P-ts15RB69W8K34_89c-KHRVFwz7T7MkKRqW5H2XlB5CrHtYW5X3YHS3QG0zRW50VM8p9czdcTW2NgfhD7MTmZQN5vRdSYhr7pHW2CBnQp6HLFDCW6xq71V1t1_c9MVhm2gRXxvqW3txhmy3F3h52W4sGDsR3NfGW3W8rSH123Sj49H31z31 ) to ensure your site isn't affected by any of the vulnerabilities that have been disclosed.

REVIEW THE REPORT NOW
(https://email.wordfence.com/e3t/Ctc/GC+113/cwG7R04/VVBB6g4P2zsTW7Gsn5w6Whp7_W33LWhB4ZBSqgN35KTBw5mNXLV3Zsc37CgBWTW2yrDcW7dHPckW6MJk2K3pwvhgV9nhPH7N5PMDW5brmX199RTlZW3ZHN3W3R4FV6W3nGgFd9dctDHW6Sw2Fw1G7QrHVlcfn36hJ5-MN70xYsBzTKl9W40zVZS5Hf9LwW4QvdvM8h1xNcN7KYNbtxVt0fW6M5H0L4mkS_LMKR1SbbLtrNW4GCSN810Xh5tW5pBl0_3Y3hBTW6c4zwy22SdBlW3C9sXz2ShtkMW3Vz4bg52PqqfW2R-Cs87rQ5npV-P-ts15RB69W8K34_89c-KHRVFwz7T7MkKRqW5H2XlB5CrHtYW5X3YHS3QG0zRW50VM8p9czdcTW2NgfhD7MTmZQN5vRdSYhr7pHW2CBnQp6HLFDCW6xq71V1t1_c9MVhm2gRXxvqW3txhmy3F3h52W4sGDsR3NfGW3W8rSH123Sj49H31z31 )

P.S. If you run the Wordfence plugin on your WordPress site, with the scanner enabled, you should've already been notified if your site was affected by any of these vulnerabilities.

The Full Product Lineup:

wf-stacked-free-1 (https://email.wordfence.com/e3t/Ctc/GC+113/cwG7R04/VVBB6g4P2zsTW7Gsn5w6Whp7_W33LWhB4ZBSqgN35KTCp3pdrrV1-WJV7CgHTvVGNwHV8j8XzVW5qMVcY9gVhCTW3mbs666Mr1_2W74H0C58SbmdjW4g-pBs5tC5GmW6JDwng4mJ3S_W8Jn2hb8FP-cNMKvzRPJFHcTW7RLrp32vQcZsW8KMp7S5RnWW_W50R8kM6xyjmTW4ZgyGg1ycQ5-M71bq51mtQKVYVDvY7WKkggW2Vyf2R4Mt3FJV5KFx63CT2gSW7dLwl9672zw0VB-fkH21FT_QW6JGfvL7z4zvHVH1tcC6--L2jW81CqhF3x6lZ_N5CHFgYfytqPW7zJD2z6Wps1mW8LLt2X2jN0qp3k4q1 )

wf-stacked-premium-1 (https://email.wordfence.com/e3t/Ctc/GC+113/cwG7R04/VVBB6g4P2zsTW7Gsn5w6Whp7_W33LWhB4ZBSqgN35KTCp3pdrrV1-WJV7CgK-RW22KTpC72pclzW5zXNfn7yKdvQN7g1JmBTq2V5Vqr3p74JLbRfW2dlH8q107z92W2MnkMd4y1KNPW9dVG0l4lNGlVW77HWP51j_TxrW6hvvVb3qk72NVw1mz15nJgqwVT4njL7bLZJ9W3LcLkY3Y2gj5W98Nd_C84Db95W53pm182sdM0hVZMp7n2XQCSLW8qHgTH73xV7lW1wGDWQ8Tz_6LW2m-Vlx4rZtmgVDWZSg26L8VFW8rYwnh1lgYcyW3qbBmb2SJ0TJW3g6cvg3XkSdTW6DHnkJ2nNyPyW1_3c816ZfLmh2CB1 )

wf-stacked-care-3 (https://email.wordfence.com/e3t/Ctc/GC+113/cwG7R04/VVBB6g4P2zsTW7Gsn5w6Whp7_W33LWhB4ZBSqgN35KTCp3pdrrV1-WJV7CgTyGN7mc5296k7HRW1R4QWZ8bT84nW1jVsMn3pT3GzW5C9K-Y5ZtmxLN7s2ZDX7pmmcW5CvMFt1WF9lmVDBZv13MwCdTW8nrhB53VBK9rW7lzg8K6wzk_yW8_wPf-8817KkVhLYDS4dVZfyW6ZYVzK1l9w23W6rxVtb311rMtW93TJD-8wsywlW2j8qK-9hj3DLW1pbFVm7YXkCNW2v95Vh1frsjtW3_bGnY6QDlxgW5BHBL86cTZnxW90NXq13Rs_Y7W5Qn89b8tHdk1W80WMfb5C_bh-W23JVmg93VKrqW5BxQRp4LH7YK36MR1 )

wf-stacked-response-2 (https://email.wordfence.com/e3t/Ctc/GC+113/cwG7R04/VVBB6g4P2zsTW7Gsn5w6Whp7_W33LWhB4ZBSqgN35KTCp3pdrrV1-WJV7CgRfFN8Ym7c1x4lVDN5LBHNnlJ00sW4XmwZZ5HwNzJW7sTkRM3P-718W5b_F_62VDV3TN41G2d_7sMhNW4RpxZp25rv5kW4M3nMt78HmWQW4MnDPN3k3ldrW1r6fMk6BbBWZW6Bd3Vd3gM9QGN5yfGLmLWMbHW7Xqkd65Mck1LW5H3XnD2kTxfHW8r3bqs6wX1pFW6PD5Q02wfdGVN3qyhXLRyYrYW2HGGbS5XX59dW54YYSD4fRJ7vW2VcNJH27gxKqN8D0tMv-C16MW5sMhTY4kXVL8W8n-66X1H9jmrW6HCRMD2vST8x2F61 )

wf-logo-intelligence-h-800 (https://email.wordfence.com/e3t/Ctc/GC+113/cwG7R04/VVBB6g4P2zsTW7Gsn5w6Whp7_W33LWhB4ZBSqgN35KTCp3pdrrV1-WJV7CgPvtN4fNYwyWZP6PN30WVPY9qDFJW1-3tp83LPvCJW3kdPCh3pXRZ6VcH1sh8z6fTYW7rh341470RLWN2bpzFPM-DLjW1VJ9xl75gq80VGwMv641hTM2W4d36KM6NySF1W6rlbGT6LznSkW3KFMkg1b6vGZW8JnGwD1Jpx-nW6mMHq186JbwHVl1Sjf5svD_VW5cM13v5ZSZ2XVPWYGh5wHb8hN5vPNvPPSkK8W53M4736B9ZYDW8kZy4v5jzj5KW79GhZM8l-1_xW914DrZ2m27xWW5t2hk57Dr5dpW6Zg2841bzfK33kVL1 )

logo-defiant (https://email.wordfence.com/e3t/Ctc/GC+113/cwG7R04/VVBB6g4P2zsTW7Gsn5w6Whp7_W33LWhB4ZBSqgN35KTBQ3pdqSV1-WJV7CgB6vW4Bj4YR7qbhQsVRMYd18kXN5vW8ynHw18c0_JCW31d2ZS2R9k5DW5LYgCR2j9qsXW3nF32H95JVLTN7Hn6sqq_CfWW6R7D3S7K1qQjW5mV2k25yWC4pW1ySdRL41HBkjW6TbNLz9j0bDjN4wSg_hnTMcxN8zx65wBmpfNW18m6W427tBJrW2fJR2x63FlCcW8fYFdT8j2m7_W7FcXpD23S5MfW2M6sq414MxqxN2zfPbsC3WxYW3cBRt-1v3yyd3lrK1 )

Defiant, Inc., 1700 Westlake Ave N STE 200, Seattle, WA 98109, United States

Unsubscribe (https://email.wordfence.com/hs/manage-preferences/unsubscribe-all?languagePreference=en&d=Vn8Pp4892TtnVsxx1M3JN_XyW41Rcn-4h29fmN6J4V3WmWcNYW5wWpGH6K4t3JV25yvJ85B0YdW5l0WLz7QKV8bN95H2L71yf0NN30sD7qwTb9MW6_ZMwt5yLz7Mn22Cllj403&v=3&_hsenc=p2ANqtz-9CgqHELbdCh3L54oelzjNhaL8QiFCb2wX8yxi3n5RD3NMP3ZU-3PO_pEw0EiesUXRyzTba_x39yY9zgT9ykK0xG3oiyg&_hsmi=255093061 )

Manage preferences (https://email.wordfence.com/hs/manage-preferences/unsubscribe?languagePreference=en&d=Vn8Pp4892TtnVsxx1M3JN_XyW41Rcn-4h29fmN6J4V3WmWcNYW5wWpGH6K4t3JV25yvJ85B0YdW5l0WLz7QKV8bN95H2L71yf0NN30sD7qwTb9MW6_ZMwt5yLz7Mn22Cllj403&v=3&_hsenc=p2ANqtz-9CgqHELbdCh3L54oelzjNhaL8QiFCb2wX8yxi3n5RD3NMP3ZU-3PO_pEw0EiesUXRyzTba_x39yY9zgT9ykK0xG3oiyg&_hsmi=255093061 )

You're receiving this email because you signed up to the Wordfence WordPress security mailing list.
Received on Thu Apr 20 2023 - 15:26:17 CEST

This archive was generated by hypermail 2.3.0 : Thu Apr 20 2023 - 15:32:52 CEST