High Severity Vulnerability Patched in Code Snippets Plugin

guy-2617866_1920

IS THERE A NORMAL SANE PERSON OUT THERE THAT UNDERSTANDS WHAT ON EARTH THE FOLLOWING LETTER IS TALKING ABOUT, BECAUSE I HAVEN’T THE FAINTEST IDEA.

I WOULD TRY TO GET IT TRANSLATED BUT I’VE NO IDEA WHAT LANGUAGE IT IS WRITTEN IN, IT DOESN’T APPEAR TO BE IN ENGLISH AND I’VE LOST MY GOBBLEDEGOOK DICTIONARY.

On January 23rd, our Threat Intelligence team discovered a vulnerability in Code Snippets, a WordPress plugin installed on over 200,000 sites.

The flaw allowed anybody to forge a request on behalf of an administrator and inject executable code on a vulnerable site. This is a Cross-Site Request Forgery (CSRF) to Remote Code Execution (RCE) vulnerability.

This is a high severity security issue that could cause complete site takeover, information disclosure, and more. We highly recommend updating to the latest version (2.14.0) immediately.

Read more about this critical vulnerability and what you need to do to protect your sites on the Wordfence blog.

Regards,

Chloe Chamberland – Wordfence Threat Analyst

About The Diary of a Country Bumpkin

I am a retired actor, although to be honest I only retired because I wasn't getting any work and the option of becoming an unemployed actor/waiter at my age was ludicrous, especially as my waiting skills are non-existent. Having said I’m retired, I don’t think there really is such a thing as a retired actor for I am still available for work, I just don’t have an agent or any connections with regards to obtaining any worthwhile work. I have over the years done student films when there is nothing else available, always low paid (if at all) the only incentive was always the promised copy of the finished film for your show reel which nine times out of ten always failed to materialise. I spent many years looking after my aged mother who had dementia, hence the lack of acting work but shortly after her death I was lucky enough to run into an ex-girlfriend of many years ago and our romance blossomed once again, resulting in us getting married in 2013. My move to the countryside inspired me to write The Diary of a Country Bumpkin which tells of my continuing dilemmas in dealing with the rigors of the countryside from the unexpectedly large number of pollens, fungal moulds and hay products waiting to attack the unsuspecting townie. I enjoy writing, see my play Dulce Et Decorum Est Pro Patria Mori on The Wireless Theatre Company, The Plays Wot I Wrote and The Battle of Barking Creek both available on Amazon.co.uk and am very fond of classic cars so my ideal occupation would be acting in a film I had written set in the 1930s/40s, we live in hopes. I am delighted to say that since venturing to the countryside where space is not quite the premium it is in town, I have due to the availability of two double garages acquired more classic cars to form a small collection the pride of which are a 1947 Bentley Mk VI and a 2000 Bentley Arnage. My various blogs and websites are continually evolving and I’m sure that by following the appropriate links you will find something which will edify or amuse.
This entry was posted in Uncategorized. Bookmark the permalink.

11 Responses to High Severity Vulnerability Patched in Code Snippets Plugin

  1. Susi Bocks says:

    If you go to your dashboard, click on Plugins to see if you have that particular plugin. If not, you should be ok.

  2. Good Lord, it’s a lot easier to understand when written in English. Thank you.

  3. Makes perfect sense to me, but I am drunk!

  4. dque says:

    It means the robots are coming! Haha

  5. SueW says:

    Did you find the letter in your Spam folder?

Leave a Reply to adguru101 Cancel reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.