WordPress Plugin 'Beautiful Cookie Consent Banner' Under Active Exploitation - 20230529002

Overview

The WA SOC has observed reports of active exploitation of a popular WordPress plugin, named Beautiful Cookie Consent Banner that can result in 'complete compromise' of a system.

The Beautiful Cookie Consent Banner plugin for WordPress is vulnerable to authorisation bypass in versions up to, and including, 2.10.0. This makes it possible for unauthenticated attackers to modify the plugin's settings and inject malicious web scripts. Please note this is still vulnerable to Cross-Site Request Forgery attacks.

What is the vulnerability?

Wordfence report - CVSS v3 Base Score: 7.3

What is vulnerable?

The vulnerability affects the following products:

• WordPress instances running Beautiful Cookie Consent Banner version 2.10.0 and older.

What has been observed?

There is no evidence of exploitation affecting Western Australian Government networks at the time of publishing however there are reports of active exploitation of the vulnerability elsewhere - Bleeping Computer.

Recommendation

The WA SOC recommends administrators apply the solutions as per remediation instructions to all affected devices: Wordfence