The WP Maps Pro plugin for WordPress contains a critical security flaw. All versions up to 6.1.0 are vulnerable to unauthenticated privilege escalation. This vulnerability allows attackers to create an administrator account without proper authentication. The potential for misuse is high, posing significant risks for server administrators and hosting providers.
This vulnerability stems from the wpgmp_temp_access_ajax AJAX action. It is incorrectly registered with wp_ajax_nopriv_, relying solely on a nonce check. This check uses the fc-call-nonce nonce, which is publicly available on frontend pages. This makes it ineffective as an access control measure.
Unauthenticated attackers can exploit this flaw to invoke the wpgmp_temp_access_support handler. By setting check_temp=false, they can create a new WordPress user with administrator privileges. This user can then fully authenticate and take over the site, leading to potential data leaks or further system compromises.
For system administrators and hosting providers, this vulnerability highlights critical weaknesses in server security. With the rise of automation in cyber attacks, vulnerabilities like this can be exploited rapidly across multiple sites. Ignoring such flaws can lead to devastating security breaches, impacting reputation, customer trust, and operational integrity.
Ensure that you upgrade the WP Maps Pro plugin to version 6.1.1 or later as soon as possible. This fix addresses the vulnerability and improves overall server security.
Immediately audit your current administrator accounts. Remove any suspicious accounts that may have been created prior to the update.
Using a web application firewall (WAF) can help filter malicious requests and protect against common exploits targeting your WordPress installations. This layer of security enhances your server's defenses against brute-force attacks and other common threats.
In the ever-evolving landscape of cybersecurity, staying informed and proactive is crucial. Strengthening your server security is more important than ever. Try BitNinja’s free 7-day trial to discover how our solution can help you protect your servers against emerging threats and vulnerabilities.
