ioc[.]one - OSINT Cyber Threat Intelligence Database

Unauthorized Plugin Installation/Activation in Hunk Companion

Tags

maec-delivery-vectors:	Watering Hole
attack-pattern:	Vulnerabilities - T1588.006 Scripting - T1064 Scripting

Show in Graph

Common Information

Type	Value
UUID	5b9bdd7a-f2b1-434a-bbdd-f26db5ae8803
Fingerprint	c49099d50a47d000
Analysis status	DONE
Considered CTI value	2
Text language
Published	Dec. 10, 2024, 4:03 p.m.
Added to db	Dec. 10, 2024, 10:21 p.m.
Last updated	Dec. 19, 2024, 8:57 a.m.
Headline	Unauthorized Plugin Installation/Activation in Hunk Companion
Title	Unauthorized Plugin Installation/Activation in Hunk Companion
Detected Hints/Tags/Attributes	30/2/10

Source URLs

	Redirection	Url
Details	Source	https://wpscan.com/blog/unauthorized-plugin-installation-activation-in-hunk-companion/

URL Provider

Details	Provider	Source level domain
Details	wpscan.com	wpscan.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	73	✔	Blog \| WPScan	https://blog.wpscan.com/feed/	2024-08-30 22:08

Attributes

Details	Type	#Events	CTI	Value
Details	CVE	9		cve-2024-11972
Details	CVE	4		cve-2024-50498
Details	CVE	6		cve-2024-9707
Details	Domain	188		wordpress.org
Details	Domain	5		downloads.wordpress.org
Details	File	1		aea74fff3c02.php
Details	File	1		installation.php
Details	File	10		'.zip
Details	File	15		app.php
Details	Url	1		https://downloads.wordpress.org/plugin/'.$slug.'.zip