Zero-Day Vulnerability in the Kaswara Modern WPBakery Page Builder Addons

The Wordfence Threat Intelligence team discovered a severe zero-day vulnerability in Kaswara Modern WPBakery Page Builder Addons, a premium plugin with 10,000+ installations, that is being actively exploited. “Robin Goodfellow” reported the vulnerability to WPScan this morning.

Unauthenticated attackers can exploit the vulnerability by uploading malicious PHP files to a WordPress site and then gaining remote code execution to take control of the site. At the time of posting, there is no known patch, and the plugin has been removed from CodeCanyon.

Aside from the actively exploited vulnerability, the Wordfence team discovered a number of vulnerable endpoints that could allow attackers to do things like delete arbitrary files and insert malicious Javascript.

According to Wordfence, It is recommended to delete this plugin from your WordPress site right away.

“Due to the developer’s unresponsiveness, a patch may not be released, in which case we recommend finding a reasonable replacement that is being actively maintained by its developer.”, Wordfence said in a blog post.

Disclosure: Our content is reader-supported, which means that if you click on some of our links that we may earn a commission.