WordPress Church Admin Local File Inclusion Scanner

WordPress Church Admin is a widely used plugin designed to help churches manage administrative tasks such as scheduling events, managing contact details, and organizing church resources. This plugin is predominantly employed by church administrators and staff members who are responsible for the day-to-day operational tasks within the church context. It allows for the seamless integration of church-specific administrative needs with digital platforms, providing a centralized hub for information management. The software is often updated and maintained to accommodate new features and security requirements, making it a popular choice in religious organizations. Unfortunately, like any software handling sensitive data, it's crucial for users to ensure that their version is secure from any known vulnerabilities. Regular updates and checks are a part of maintaining its security and functionality.

The Local File Inclusion (LFI) vulnerability is a significant security flaw that allows attackers to include files from the target server in the URL. When an LFI vulnerability is present, unauthorized individuals can access sensitive files, which may contain configuration details, passwords, and other critical data. The Church Admin plugin's vulnerability could potentially expose such sensitive information if it is exploited without restrictions. This type of vulnerability typically arises from improper sanitization of input parameters, enabling an attacker to traverse directories and access files beyond the intended scope. The potential risk can directly compromise the integrity and confidentiality of the information stored within the system.

The technical aspect of this vulnerability within WordPress Church Admin involves the "key" parameter of the file plugins/church-admin/display/download.php, which can be exploited by attackers. By manipulating the "key" parameter, attackers can navigate through directories, potentially gaining access to critical server files such as /etc/passwd. If the request containing such a crafted parameter returns a 200 status code along with the expected content, it confirms the vulnerability. This type of vulnerability is indicative of insufficient input validation, especially concerning file path inputs, which need to be sanitized to prevent exploitation. A successfully executed attack does not only disclose sensitive server information but also exposes the platform to further security breaches.

If exploited, the Local File Inclusion vulnerability can result in severe consequences for the affected website. Unauthorized access to server files may lead to the theft of sensitive information, privilege escalation, and even the compromise of user accounts. In the worst-case scenario, attackers may use the disclosed information to introduce malware or establish persistent backdoor access. Consequently, those administering the Church Admin plugin must be vigilant in securing their installations to prevent such security breaches. Exploiting this vulnerability undermines users' trust and can lead to reputational and financial repercussions for affected organizations. Mitigating these risks requires immediate attention and remediation to avoid further exploitation.

REFERENCES

• https://wpscan.com/vulnerability/8997
• https://id.wordpress.org/plugins/church-admin/