WordPress Adsense Deluxe Vulnerability
David Kierznowski of Operation n has discovered some serious flaws in the WordPress Adsense Deluxe plugin as part of the WordPress Angel Project. The vulnerability(s) affect all versions.
This vulnerability reminds me of the the old Hacker movies, where a worm is released that steals random pennys from unsuspecting victims. This vulnerability is the closest I have seen to this scenario.
The vendor has been notified, and more information regarding the vulnerability will be released after 30 days or until such a time as the author feels that WordPress users have had a chance to upgrade.
Unfortunately, the developer has not gotten back to me, and as many blogs use this plugin as a source of income, I have gone ahead and made the necessary changes myself as a temporary solution. Please note this is an unofficial release. Hopefully the vendor will verify the changes and make an official release shortly.
As with any plugin, please make sure you have made a backup before downloading and installing this.
Download adsense-deluxe.zip.
The vendor was notified: 18/05/07
Response received: None as yet
Fix received: Temporary fix released as part of the WordPress Angel Project.
References:
MD has done it again, a true blogging resource…. keep it up!!
Haha nice find, but anyway the “Javascript To Rule Them All” is my title, biatch ;)
So, MD was now an active worpress vulnerability, researcher?
hehe…
nice posting, sir! :D
another wordpress 2.1.3 vulnerability:
http://www.milw0rm.com/exploits/3960
KaiTou, you’ll be happy to know that I have taken your comment to heart and opened http://blogsecurity.net to post my blog rantings, and leave michaeldaw for the hacker anthology :) I hope to see you guys (beni, KaiTou) contributing there as you do here. In fact, I am looking for contributers if you guys are interested.
Thanks again for your guys support.
Many thanks, I’ve installed it now.
Is there a way to tell if we’ve lost any dosh? I guess not. :)
marcus, hehe :)
Thats one thing many people will stop using now. Its one of the most used plugin in wordpressI Stopped using it long back. Thanks for the update
[…] The Plugin has not been updated yet so please head over to David’s blog to download the temporary fix. […]
Thank you for the heads-up, installed it :)
[…] werden kann. Noch gibt es keinen offiziellen Bugfix, doch David Kierznowski stellt auf seiner Seite einen temporären Fix bereit. von BloggingTom, abgelegt unter WordpressPermalink | Trackback URI print it! | yigg it! […]
Thanks for the fix! Great work!
So what exactly is the problem and how did you fix it?
[…] in einem unfangreichen Update dieser Seite hat mich Jan auf einen brisanten Beitrag aufmerksam gemacht. Dieser beschreibt eine wohl nicht zu unterschätzende Sicherheitslücke […]
David, it’s the wonderful, virtuous, brilliant minds that also have integrity that make the internet a wonderful place. Thank you for your hard work, your eagle-eyes and your heart. I’m sure you’ll get another star in your crown. :-) Blessings, Donna
[…] en Aleman y en Ingles las notas originales, en la pagina (ingles) tambien encontraran un Patch para los que no quieran […]
[…] beNi released 7 zero-day vulnerabilities for WordPress today as well as a the first weblog worm, which topic has interested me for some time now… […]
Are there more parts to this plugin, other than the file you edited?
The adsense deluxe site is down, therefore I can not donwload the original plugin. And the one you have for download returns the error:
Fatal error: Call to undefined function attribute_escape() Line 807
(attribute_escape() also appears on line 900)
I’m thinking that your file just replaces one of the files that is included in the original adsense-deluxe plugin, is that the case?
Hey David,
I just uninstalled version 0.8 of Adsense Deluxe and uploaded your version. Does your fix eliminate the author’s cut of 5% of revenue? I wasn’t sure as you were a bit vague in your post. Please let me know….I’m shocked that the author of the plugin was stealing from thousands of authors. So very wrong.
Thanks again.
Bill, looks like a WordPress problem, however, I created a patched version using htmlentities instead which isnt WordPress specific. It can be found here: http://michaeldaw.org/projects/adsense-deluxe.php.txt
Colin, the author had the option to take 5% of Ad revenue, however it was turned off by default :) Its definately turned off in my version.
Thanks David - works great in Wordpress!
[…] night I did a little searching and I found this page… I wasn’t able to find any other information about this exploit, but the words… […]
[…] Ist zwar schon etwa 2 Jahre alt, aber funktioniert 1a. Da diese Version aber scheinbar eine kleine Sicherheitslücke haben soll, bitte diese Version […]