{"id":7294,"date":"2019-03-17T06:00:00","date_gmt":"2019-03-17T13:00:00","guid":{"rendered":"https:\/\/www.inmotionhosting.com\/blog\/?p=7294"},"modified":"2024-01-23T14:39:16","modified_gmt":"2024-01-23T19:39:16","slug":"attention-wordpress-website-owners","status":"publish","type":"post","link":"https:\/\/www.inmotionhosting.com\/blog\/attention-wordpress-website-owners\/","title":{"rendered":"ATTENTION WordPress Website Owners &#8211; Website Vulnerability"},"content":{"rendered":"\n<figure class=\"wp-block-image\"><img loading=\"lazy\" decoding=\"async\" width=\"780\" height=\"520\" src=\"https:\/\/www.inmotionhosting.com\/blog\/wp-content\/uploads\/2019\/03\/wp-website-security.jpg\" alt=\"WordPress Website\" class=\"wp-image-7299 skip_lazy\" srcset=\"https:\/\/www.inmotionhosting.com\/blog\/wp-content\/uploads\/2019\/03\/wp-website-security.jpg 780w, https:\/\/www.inmotionhosting.com\/blog\/wp-content\/uploads\/2019\/03\/wp-website-security-300x200.jpg 300w, https:\/\/www.inmotionhosting.com\/blog\/wp-content\/uploads\/2019\/03\/wp-website-security-768x512.jpg 768w, https:\/\/www.inmotionhosting.com\/blog\/wp-content\/uploads\/2019\/03\/wp-website-security-560x373.jpg 560w\" sizes=\"auto, (max-width: 780px) 100vw, 780px\" \/><\/figure>\n\n\n\n<p>We were recently informed of a pretty large attack on WordPress websites that use the <a href=\"https:\/\/wordpress.org\/plugins\/woocommerce-abandoned-cart\" target=\"_blank\" rel=\"noopener noreferrer\">Abandoned Cart Lite for WooCommerce plugin<\/a>. With over 20,000+ installs, this vulnerability isn\u2019t a minor issue. Let\u2019s take a look at what hackers are doing and how you can prevent it from happening to your website.<\/p>\n\n\n\n<p>Taking over a website and infecting isn\u2019t too hard for hackers when version 5.1.3 or later is installed. The hackers pretend to be customers and add items to the cart, but when the time comes for checkout info, they enter fake information and injected code via a link to the billing \u201clast name\u201d field. They then will abandon the cart, causing the Abandoned Cart Lite plugin to log the information. The code that they injected with that link will then run once you or anyone with administrator privileges logs in and views the \u201cabandoned carts\u201d in the backend of the website.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">What This Means for You<\/h2>\n\n\n\n<p>So what happens after someone views the abandoned carts? You probably won\u2019t notice anything right away, but let\u2019s look at what happens in the background.<\/p>\n\n\n\n<p>The injected code opens up two \u201csecret\u201d doors into your website. The first door allows the hacker to create an administrator user named \u2018woousers\u2019. As this is an admin user, they will have full access to your website. <\/p>\n\n\n\n<p>The second door is a bit more complex, and is ultimately a \u201cbackup\u201d plan in case something doesn\u2019t work with the first door. Basically, the injected code will look for any plugin that is installed on your website that is not active (disabled) and will then replace the files of that plugin with malicious code, giving them full control.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">How to Prevent Attacks on Your WordPress Website<\/h2>\n\n\n\n<p>So, how do you prevent this from happening? First off, you need to run updates on your WordPress website. Since this plugin vulnerability has been discovered, Tyche Softwares, the creators of Abandoned Cart Lite for WooCommerce have issued an update to fix this issue. <\/p>\n\n\n\n<p>While the update goes above and beyond and will automatically remove the \u2018woousers\u2019 if it finds it listed, there is still a possibility of infection depending on the number of \u2018doors\u2019 that were created.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Keep Your Website Prepared<\/h2>\n\n\n\n<p>Unfortunately, there isn\u2019t any way of knowing how many websites have been infected, so the best way to prevent against this from happening is to run updates and keep an eye on your website over the next few weeks. If you have backups of your website, we recommend having it ready in case something goes wrong.<\/p>\n\n\n\n<p>The main key to protecting your website from vulnerabilities, is to take backups and run updates.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>We were recently informed of a pretty large attack on WordPress websites that use the Abandoned Cart Lite for WooCommerce plugin. With over 20,000+ installs, this vulnerability isn\u2019t a minor issue. Let\u2019s take a look at what hackers are doing and how you can prevent it from happening to your website. Taking over a website<a class=\"moretag\" href=\"https:\/\/www.inmotionhosting.com\/blog\/attention-wordpress-website-owners\/\"> Read More ><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[371,211],"tags":[],"class_list":["post-7294","post","type-post","status-publish","format-standard","hentry","category-security","category-wordpress"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.2 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>ATTENTION WordPress Website Vulnerability | InMotion Hosting Blog<\/title>\n<meta name=\"description\" content=\"Find out about a recent WordPress website attack that your site may have been affected by, and what you can do if it happened to your site.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.inmotionhosting.com\/blog\/attention-wordpress-website-owners\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"ATTENTION WordPress Website Vulnerability | InMotion Hosting Blog\" \/>\n<meta property=\"og:description\" content=\"Find out about a recent WordPress website attack that your site may have been affected by, and what you can do if it happened to your site.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.inmotionhosting.com\/blog\/attention-wordpress-website-owners\/\" \/>\n<meta property=\"og:site_name\" content=\"InMotion Hosting Blog\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/inmotionhosting\" \/>\n<meta property=\"article:published_time\" content=\"2019-03-17T13:00:00+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-01-23T19:39:16+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.inmotionhosting.com\/blog\/wp-content\/uploads\/2019\/03\/wp-website-security.jpg\" \/>\n<meta name=\"author\" content=\"InMotion Hosting\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@inmotionhosting\" \/>\n<meta name=\"twitter:site\" content=\"@inmotionhosting\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"InMotion Hosting\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"ATTENTION WordPress Website Vulnerability | InMotion Hosting Blog","description":"Find out about a recent WordPress website attack that your site may have been affected by, and what you can do if it happened to your site.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.inmotionhosting.com\/blog\/attention-wordpress-website-owners\/","og_locale":"en_US","og_type":"article","og_title":"ATTENTION WordPress Website Vulnerability | InMotion Hosting Blog","og_description":"Find out about a recent WordPress website attack that your site may have been affected by, and what you can do if it happened to your site.","og_url":"https:\/\/www.inmotionhosting.com\/blog\/attention-wordpress-website-owners\/","og_site_name":"InMotion Hosting Blog","article_publisher":"https:\/\/www.facebook.com\/inmotionhosting","article_published_time":"2019-03-17T13:00:00+00:00","article_modified_time":"2024-01-23T19:39:16+00:00","og_image":[{"url":"https:\/\/www.inmotionhosting.com\/blog\/wp-content\/uploads\/2019\/03\/wp-website-security.jpg","type":"","width":"","height":""}],"author":"InMotion Hosting","twitter_card":"summary_large_image","twitter_creator":"@inmotionhosting","twitter_site":"@inmotionhosting","twitter_misc":{"Written by":"InMotion Hosting","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"TechArticle","@id":"https:\/\/www.inmotionhosting.com\/blog\/attention-wordpress-website-owners\/#article","isPartOf":{"@id":"https:\/\/www.inmotionhosting.com\/blog\/attention-wordpress-website-owners\/"},"author":{"name":"InMotion Hosting","@id":"https:\/\/www.inmotionhosting.com\/blog\/#\/schema\/person\/f21a89c83c7697a760c96cfe58e646bc"},"headline":"ATTENTION WordPress Website Owners &#8211; Website Vulnerability","datePublished":"2019-03-17T13:00:00+00:00","dateModified":"2024-01-23T19:39:16+00:00","mainEntityOfPage":{"@id":"https:\/\/www.inmotionhosting.com\/blog\/attention-wordpress-website-owners\/"},"wordCount":453,"commentCount":0,"publisher":{"@id":"https:\/\/www.inmotionhosting.com\/blog\/#organization"},"image":{"@id":"https:\/\/www.inmotionhosting.com\/blog\/attention-wordpress-website-owners\/#primaryimage"},"thumbnailUrl":"https:\/\/www.inmotionhosting.com\/blog\/wp-content\/uploads\/2019\/03\/wp-website-security.jpg","articleSection":["Security","WordPress Articles"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.inmotionhosting.com\/blog\/attention-wordpress-website-owners\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.inmotionhosting.com\/blog\/attention-wordpress-website-owners\/","url":"https:\/\/www.inmotionhosting.com\/blog\/attention-wordpress-website-owners\/","name":"ATTENTION WordPress Website Vulnerability | InMotion Hosting Blog","isPartOf":{"@id":"https:\/\/www.inmotionhosting.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.inmotionhosting.com\/blog\/attention-wordpress-website-owners\/#primaryimage"},"image":{"@id":"https:\/\/www.inmotionhosting.com\/blog\/attention-wordpress-website-owners\/#primaryimage"},"thumbnailUrl":"https:\/\/www.inmotionhosting.com\/blog\/wp-content\/uploads\/2019\/03\/wp-website-security.jpg","datePublished":"2019-03-17T13:00:00+00:00","dateModified":"2024-01-23T19:39:16+00:00","description":"Find out about a recent WordPress website attack that your site may have been affected by, and what you can do if it happened to your site.","breadcrumb":{"@id":"https:\/\/www.inmotionhosting.com\/blog\/attention-wordpress-website-owners\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.inmotionhosting.com\/blog\/attention-wordpress-website-owners\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.inmotionhosting.com\/blog\/attention-wordpress-website-owners\/#primaryimage","url":"https:\/\/www.inmotionhosting.com\/blog\/wp-content\/uploads\/2019\/03\/wp-website-security.jpg","contentUrl":"https:\/\/www.inmotionhosting.com\/blog\/wp-content\/uploads\/2019\/03\/wp-website-security.jpg","width":780,"height":520,"caption":"WordPress Website"},{"@type":"BreadcrumbList","@id":"https:\/\/www.inmotionhosting.com\/blog\/attention-wordpress-website-owners\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.inmotionhosting.com\/blog\/"},{"@type":"ListItem","position":2,"name":"WordPress Articles","item":"https:\/\/www.inmotionhosting.com\/blog\/wordpress\/"},{"@type":"ListItem","position":3,"name":"ATTENTION WordPress Website Owners &#8211; Website Vulnerability"}]},{"@type":"WebSite","@id":"https:\/\/www.inmotionhosting.com\/blog\/#website","url":"https:\/\/www.inmotionhosting.com\/blog\/","name":"InMotion Hosting Blog","description":"Web Hosting Strategy, Trends and Security","publisher":{"@id":"https:\/\/www.inmotionhosting.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.inmotionhosting.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.inmotionhosting.com\/blog\/#organization","name":"InMotion Hosting","url":"https:\/\/www.inmotionhosting.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.inmotionhosting.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.inmotionhosting.com\/blog\/wp-content\/uploads\/2019\/11\/imh-logo-all-colors-big.jpg","contentUrl":"https:\/\/www.inmotionhosting.com\/blog\/wp-content\/uploads\/2019\/11\/imh-logo-all-colors-big.jpg","width":1630,"height":430,"caption":"InMotion Hosting"},"image":{"@id":"https:\/\/www.inmotionhosting.com\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/inmotionhosting","https:\/\/x.com\/inmotionhosting"]},{"@type":"Person","@id":"https:\/\/www.inmotionhosting.com\/blog\/#\/schema\/person\/f21a89c83c7697a760c96cfe58e646bc","name":"InMotion Hosting","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/eb965eada0c0513dd2e1976b21fe270fa4f19ac273960fc080f9d46b81b353a4?s=96&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/eb965eada0c0513dd2e1976b21fe270fa4f19ac273960fc080f9d46b81b353a4?s=96&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/eb965eada0c0513dd2e1976b21fe270fa4f19ac273960fc080f9d46b81b353a4?s=96&r=g","caption":"InMotion Hosting"},"url":"https:\/\/www.inmotionhosting.com\/blog\/author\/imhmainadmin\/"}]}},"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"primary_category":{"id":211,"name":"WordPress Articles","slug":"wordpress","link":"https:\/\/www.inmotionhosting.com\/blog\/wordpress\/"},"_links":{"self":[{"href":"https:\/\/www.inmotionhosting.com\/blog\/wp-json\/wp\/v2\/posts\/7294","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.inmotionhosting.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.inmotionhosting.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.inmotionhosting.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.inmotionhosting.com\/blog\/wp-json\/wp\/v2\/comments?post=7294"}],"version-history":[{"count":9,"href":"https:\/\/www.inmotionhosting.com\/blog\/wp-json\/wp\/v2\/posts\/7294\/revisions"}],"predecessor-version":[{"id":73094,"href":"https:\/\/www.inmotionhosting.com\/blog\/wp-json\/wp\/v2\/posts\/7294\/revisions\/73094"}],"wp:attachment":[{"href":"https:\/\/www.inmotionhosting.com\/blog\/wp-json\/wp\/v2\/media?parent=7294"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.inmotionhosting.com\/blog\/wp-json\/wp\/v2\/categories?post=7294"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.inmotionhosting.com\/blog\/wp-json\/wp\/v2\/tags?post=7294"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}