Zero Day Vulnerabilities

2 Oct 2017


PHP Object Injection Vulnerability Severity 9.8 (Critical) in the following WordPress plugins

- Appointments
- RegistrationMagic-Custom Registration Forms
- Flickr Gallery

This vulnerability allowed attackers to cause a vulnerable website to fetch a remote file (a PHP backdoor) and save it to a location of their choice. It required no authentication or elevated privileges. For sites running Flickr Gallery, the attackers only had to send the exploit as POST request to the site’s root URL. For the other two plugins, the request would go to admin-ajax.php. If the attacker was able to access their backdoor, they could completely take over the vulnerable site.