Blog | G5 Cyber Security

Pingback Bug in WordPress Can Be Leveraged in DDoS Attack, Router Reconfiguration

A bug known since 2007 in the popular publishing platform WordPress is now back and ready to be abused. A malicious user can spoof a pingback to a specific blog in order to send a malicious command to scan the internal network where the host (the computer that runs the blog software) resides, to reconfigure a router on the network of the host or to simply hammer the computer until it crashes. WordPress is currently used by 17.5% of all websites on the Internet in a multitude of setups and configurations.”]

Source: https://www.bitdefender.com/blog/hotforsecurity/pingback-bug-in-wordpress-can-be-leveraged-in-ddos-attack-router-reconfiguration/

Exit mobile version