Itayamar WordPress Plugins Supply Chain Compromise Vulnerability

A supply chain compromise vulnerability has been identified in multiple WordPress plugins by Itayamar, specifically the 'disable-right-click-powered-by-pixterme' plugin through version 1.2 and the 'pixter-image-digital-license' plugin through version 1.0. These plugins load a compromised JavaScript file from an apparently abandoned S3 bucket. The injected script can serve as a backdoor for those who control it, although it currently only displays a promotional alert for security services. Users who pay for the service can have the popup suppressed by being added to an allowedDomains list.

Impact

Exploitation of this vulnerability allows for unauthorized access and control, creating a backdoor in the affected WordPress plugins.

Reproduction

The vulnerability can be reproduced by downloading the compromised JavaScript file from the abandoned S3 bucket. This file will then be executed by the vulnerable WordPress plugins, creating a backdoor that can be used to control the site.