{"id":608,"date":"2017-12-20T19:12:21","date_gmt":"2017-12-21T02:12:21","guid":{"rendered":"http:\/\/dshsolutions.com\/wordpress\/?p=608"},"modified":"2017-12-20T19:12:21","modified_gmt":"2017-12-21T02:12:21","slug":"backdoor-in-captcha-plugin-affects-300k-wordpress-sites","status":"publish","type":"post","link":"https:\/\/dshsolutions.com\/wordpress\/backdoor-in-captcha-plugin-affects-300k-wordpress-sites\/","title":{"rendered":"Backdoor in Captcha Plugin Affects 300K WordPress Sites"},"content":{"rendered":"

Check your WordPress sites for this plugin and remove it<\/p>\n

 <\/p>\n

The WordPress repository recently removed the plugin Captcha over what initially\u00a0appeared to be a trademark issue with the current author using \u201cWordPress\u201d<\/a>\u00a0[Editors note: the original page has been removed, we\u2019re now linking to a screen shot.] in their brand name.<\/p>\n

<…><\/p>\n

A backdoor file allows an attacker, or in this case, a plugin author, to gain unauthorized administrative access to your website. This backdoor creates a session with user ID 1 (the default admin user that WordPress creates when you first install it), sets authentication cookies, and then deletes itself.<\/p>\n

The backdoor installation code is unauthenticated, meaning anyone can trigger it. We will edit this post to include a proof of concept after 30 days with technical details on how the backdoor installation and execution works.<\/p><\/blockquote>\n

Source: Backdoor in Captcha Plugin Affects 300K WordPress Sites<\/a><\/em><\/p>\n","protected":false},"excerpt":{"rendered":"

Check your WordPress sites for this plugin and remove it   The WordPress repository recently removed the plugin Captcha over what initially\u00a0appeared to be a trademark issue with the current author using \u201cWordPress\u201d\u00a0[Editors note: the original page has been removed, we\u2019re now linking to a screen shot.] in their brand name. <…> A backdoor file […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4,5,8],"tags":[],"class_list":["post-608","post","type-post","status-publish","format-standard","hentry","category-privacy","category-security-2","category-software"],"_links":{"self":[{"href":"https:\/\/dshsolutions.com\/wordpress\/wp-json\/wp\/v2\/posts\/608","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/dshsolutions.com\/wordpress\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/dshsolutions.com\/wordpress\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/dshsolutions.com\/wordpress\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/dshsolutions.com\/wordpress\/wp-json\/wp\/v2\/comments?post=608"}],"version-history":[{"count":0,"href":"https:\/\/dshsolutions.com\/wordpress\/wp-json\/wp\/v2\/posts\/608\/revisions"}],"wp:attachment":[{"href":"https:\/\/dshsolutions.com\/wordpress\/wp-json\/wp\/v2\/media?parent=608"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/dshsolutions.com\/wordpress\/wp-json\/wp\/v2\/categories?post=608"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/dshsolutions.com\/wordpress\/wp-json\/wp\/v2\/tags?post=608"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}