By 
The National Information Technology Development Agency (NITDA) has issued a critical alert regarding a newly discovered security vulnerability, CVE-2024-28000, which affects over five million websites worldwide.
This vulnerability targets the LiteSpeed Cache plugin, a widely used WordPress tool for optimizing website performance. NITDA warns that the flaw could enable attackers to gain full control of affected websites, posing serious risks to site owners and their users.
According to NITDA, the vulnerability stems from a flaw in the plugin’s “role simulation” feature, allowing cybercriminals to exploit it and gain administrative access to websites without requiring authentication. Once control is obtained, attackers can install malicious plugins, steal sensitive data, or redirect site visitors to harmful websites.
The agency further explained that the ease of this attack is due to a weak hash function combined with a simple attack vector, making it easier for cyber attackers to brute-force their way into websites or manipulate exposed debug logs to obtain administrative privileges. With the LiteSpeed Cache plugin installed on millions of websites, the potential damage could be significant.
Websites vulnerable to this attack are at risk of data theft, where cybercriminals could steal sensitive user information such as personal details and payment data. They may also face website defacement, with attackers altering content, embedding malicious code, or disrupting site functionality. Another significant threat is the redirection of site visitors to malicious websites, increasing the risk of phishing scams or malware infections.
Given the widespread use of WordPress, NITDA stressed that this vulnerability could severely impact businesses by causing financial losses and damaging their reputations.
To prevent exploitation, NITDA strongly urges all WordPress website administrators using the LiteSpeed Cache plugin to update it immediately.
“Ensure that the plugin is updated to the latest version (6.4.1). To check for updates, log in to your WordPress dashboard, go to the ‘Plugins’ section, and update LiteSpeed Cache if necessary,” the agency advised.
Taking prompt action to secure websites is essential to protect against potential attacks and maintain the integrity of affected platforms.
Comments