{"id":2164,"date":"2024-02-01T10:12:10","date_gmt":"2024-02-01T10:12:10","guid":{"rendered":"https:\/\/certera.com\/blog\/?p=2164"},"modified":"2024-02-01T10:12:11","modified_gmt":"2024-02-01T10:12:11","slug":"wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites","status":"publish","type":"post","link":"https:\/\/certera.com\/blog\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\/","title":{"rendered":"WordPress Vulnerability \u201cReplace Better Search\u201d Affects Up to +1 Million Websites"},"content":{"rendered":"\n<p class=\"wp-block-paragraph\"><strong>Word Fence Intelligence&#8217;s security professionals found a malicious activity that intends to take advantage of a critical severity vulnerability in the WordPress plugin &#8220;Better Search Replace.&#8221;<\/strong><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">More than one million popular WordPress plugins and Better Search Replace installations have been installed globally. WordPress could replace databases and do more thorough database searches when websites are moved to other domains and servers with this plugin.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Better Search Replace WordPress Plugin<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Better Search Replace is a WordPress plugin that has been installed over a million times, and it makes database searches and task replacement easier when moving websites to various domains or hosting settings.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">With its enhanced Search and replace feature, the plugin offers a practical way to handle databases effectively. It also has a dynamic real-time text\/word replacement function.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">It offers selective replacement choices, supports WordPress Multisite, and a &#8220;<strong>dry run<\/strong>&#8221; option to ensure everything functions well. Admins can utilize it to search for and replace a particular text in the database or handle serialized data. A free and a paid Pro version of the plugin are available.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Key Features Include:<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Replace any text by searching for it.<\/li>\n\n\n\n<li>Look up and swap out attachment URLs, pictures, etc.<\/li>\n\n\n\n<li>Without modifying the database, create temporary find-replace rules.<\/li>\n\n\n\n<li>Remove or modify the footer credit without affecting the database or HTML code.<\/li>\n\n\n\n<li>Utilizing jQuery and Ajax, search and replace the loaded text.<\/li>\n\n\n\n<li>Find URLs and replace them. etc,<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\">Pro Features Include:<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li>robust database search and replacement capabilities.<\/li>\n\n\n\n<li>The best way to search, replace, and remove items from serialized data.<\/li>\n\n\n\n<li>Automated backup of the replacement and search data.<\/li>\n\n\n\n<li>The most straightforward approach to recover data that you unintentionally replaced.<\/li>\n\n\n\n<li>Possibility of individually checking and replacing every item that will be changed in the database. etc,<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">PHP Object Injection Vulnerability<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">WP Engine, the plugin provider, patched a critical-severity PHP object injection vulnerability, identified as CVE-2023-6933, <a href=\"https:\/\/www.wordfence.com\/threat-intel\/vulnerabilities\/wordpress-plugins\/better-search-replace\/better-search-replace-144-unauthenticated-php-object-injection\">last week with version 1.4.5<\/a>.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Unauthenticated attackers can inject a PHP object due to a security flaw in the deserialization of untrusted input. If successful, exploitation might result in the execution of code, access to private information, the alteration or removal of files, and a generation of an infinite loop denial of service issue.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The website&#8217;s security can be jeopardized, or arbitrary code might be executed if an attacker can upload (inject) input with a serialized object. User input that needs to be sufficiently sanitized is typically the source of this vulnerability. Sanitization is a standard procedure for screening input data to ensure that only anticipated input kinds are accepted and dangerous inputs are rejected and blocked.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">According to Wordfence&#8217;s tracker, Better Search Replace isn&#8217;t directly susceptible. Still, if another plugin or theme on the same website uses the Property Oriented Programming (POP) chain, it could be possible to use this issue to execute code, acquire sensitive data, or damage files.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">A proper POP chain that the injected object can activate to carry out malicious operations is frequently necessary to exploit PHP object injection vulnerabilities.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Since WordPress security company Wordfence states that it has stopped over 2,500 attempts targeting CVE-2023-6933 on its clients in the last 24 hours, hackers have taken advantage of the vulnerability.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Strategies to Respond<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Better Search Replace versions 1.4.4 and earlier are affected by the bug. Upgrading to 1.4.5 is an excellent idea for users as soon as possible. So, it is recommended that Better Search Replace plugin users update to the most recent version immediately to secure their websites against unauthorized activities. <\/p>\n\n\n\n<p class=\"quote-section wp-block-paragraph\"><a href=\"https:\/\/certera.com\/services\/wordpress-support-services\">Certera&#8217;s WordPress Support Services<\/a> can help with each aspect of running a website, including managing user accounts, adding custom features, and configuring themes, plugins, and core files. Especially, our qualified experts can offer top-notch assistance with whatever task you require, including website setup, custom plugin development, malware protection, and performance optimization.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Word Fence Intelligence&#8217;s security professionals found a malicious activity that intends to take advantage of a critical severity vulnerability in the WordPress plugin &#8220;Better Search Replace.&#8221; More than one million popular WordPress plugins and Better Search Replace installations have been installed globally. WordPress could replace databases and do more thorough database searches when websites are<span class=\"morelink d-block mt-3\"><a href=\"https:\/\/certera.com\/blog\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\/\">Read More<\/a><\/span><\/p>\n","protected":false},"author":1,"featured_media":2167,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[20],"tags":[428,429,427],"class_list":["post-2164","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-wordpress-support-service","tag-better-search-replace-wordpress-plugin","tag-php-object-injection-vulnerability","tag-wordpress-vulnerabilities","entry"],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v24.6 (Yoast SEO v27.3) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>WordPress Vulnerability Replace Better Search Affects 1 Million Sites<\/title>\n<meta name=\"description\" content=\"A critical severity vulnerability was discovered in the WordPress Better Search Replace plugin which has over 1 million active website installs.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/certera.com\/blog\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"WordPress Vulnerability \u201cReplace Better Search\u201d Affects Up to +1 Million Websites\" \/>\n<meta property=\"og:description\" content=\"A critical severity vulnerability was discovered in the WordPress Better Search Replace plugin which has over 1 million active website installs.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/certera.com\/blog\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\/\" \/>\n<meta property=\"og:site_name\" content=\"EncryptedFence by Certera - Web &amp; Cyber Security Blog\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/certeraLLC\/\" \/>\n<meta property=\"article:published_time\" content=\"2024-02-01T10:12:10+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-02-01T10:12:11+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/certera.com\/blog\/wp-content\/uploads\/2024\/02\/wordpress-vulnerability-replace-better-search-jpg.webp\" \/>\n\t<meta property=\"og:image:width\" content=\"960\" \/>\n\t<meta property=\"og:image:height\" content=\"620\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Janki Mehta\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@certera_llc\" \/>\n<meta name=\"twitter:site\" content=\"@certera_llc\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Janki Mehta\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\\\/\"},\"author\":{\"name\":\"Janki Mehta\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#\\\/schema\\\/person\\\/e5a476aa90d9e02260ebfe4b0bf046b7\"},\"headline\":\"WordPress Vulnerability \u201cReplace Better Search\u201d Affects Up to +1 Million Websites\",\"datePublished\":\"2024-02-01T10:12:10+00:00\",\"dateModified\":\"2024-02-01T10:12:11+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\\\/\"},\"wordCount\":639,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/certera.com\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/02\\\/wordpress-vulnerability-replace-better-search-jpg.webp\",\"keywords\":[\"Better Search Replace WordPress Plugin\",\"PHP Object Injection Vulnerability\",\"WordPress Vulnerabilities\"],\"articleSection\":[\"WordPress Support Service\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/certera.com\\\/blog\\\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\\\/#respond\"]}],\"copyrightYear\":\"2024\",\"copyrightHolder\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#organization\"}},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\\\/\",\"url\":\"https:\\\/\\\/certera.com\\\/blog\\\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\\\/\",\"name\":\"WordPress Vulnerability Replace Better Search Affects 1 Million Sites\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/certera.com\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/02\\\/wordpress-vulnerability-replace-better-search-jpg.webp\",\"datePublished\":\"2024-02-01T10:12:10+00:00\",\"dateModified\":\"2024-02-01T10:12:11+00:00\",\"description\":\"A critical severity vulnerability was discovered in the WordPress Better Search Replace plugin which has over 1 million active website installs.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/certera.com\\\/blog\\\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\\\/#primaryimage\",\"url\":\"https:\\\/\\\/certera.com\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/02\\\/wordpress-vulnerability-replace-better-search-jpg.webp\",\"contentUrl\":\"https:\\\/\\\/certera.com\\\/blog\\\/wp-content\\\/uploads\\\/2024\\\/02\\\/wordpress-vulnerability-replace-better-search-jpg.webp\",\"width\":960,\"height\":620,\"caption\":\"Better Search Replace Plugin Vulnerability\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/certera.com\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"WordPress Vulnerability \u201cReplace Better Search\u201d Affects Up to +1 Million Websites\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/certera.com\\\/blog\\\/\",\"name\":\"EncryptedFence by Certera - Web & Cyber Security Blog\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#organization\"},\"alternateName\":\"Certera's EncryptedFence Blog\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/certera.com\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#organization\",\"name\":\"Certera\",\"url\":\"https:\\\/\\\/certera.com\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/certera.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/08\\\/logo-encryptedfence.svg\",\"contentUrl\":\"https:\\\/\\\/certera.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/08\\\/logo-encryptedfence.svg\",\"caption\":\"Certera\"},\"image\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.facebook.com\\\/certeraLLC\\\/\",\"https:\\\/\\\/x.com\\\/certera_llc\",\"https:\\\/\\\/www.linkedin.com\\\/company\\\/certera-llc\\\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#\\\/schema\\\/person\\\/e5a476aa90d9e02260ebfe4b0bf046b7\",\"name\":\"Janki Mehta\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/1fba817ef81065f1393461fc3a0d85c40f2cc826919819ea4df4b12d76566e62?s=96&d=https%3A%2F%2Fcertera.com%2Fblog%2Fwp-content%2Fuploads%2F2023%2F02%2Fhttps-vs-sftp-jpg.webp&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/1fba817ef81065f1393461fc3a0d85c40f2cc826919819ea4df4b12d76566e62?s=96&d=https%3A%2F%2Fcertera.com%2Fblog%2Fwp-content%2Fuploads%2F2023%2F02%2Fhttps-vs-sftp-jpg.webp&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/1fba817ef81065f1393461fc3a0d85c40f2cc826919819ea4df4b12d76566e62?s=96&d=https%3A%2F%2Fcertera.com%2Fblog%2Fwp-content%2Fuploads%2F2023%2F02%2Fhttps-vs-sftp-jpg.webp&r=g\",\"caption\":\"Janki Mehta\"},\"description\":\"Janki Mehta is a passionate Cyber-Security Enthusiast who keenly monitors the latest developments in the Web\\\/Cyber Security industry. She puts her knowledge into practice and helps web users by arming them with the necessary security measures to stay safe in the digital world.\",\"sameAs\":[\"https:\\\/\\\/certerassl.com\\\/\"],\"url\":\"https:\\\/\\\/certera.com\\\/blog\\\/author\\\/certerabguser\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"WordPress Vulnerability Replace Better Search Affects 1 Million Sites","description":"A critical severity vulnerability was discovered in the WordPress Better Search Replace plugin which has over 1 million active website installs.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/certera.com\/blog\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\/","og_locale":"en_US","og_type":"article","og_title":"WordPress Vulnerability \u201cReplace Better Search\u201d Affects Up to +1 Million Websites","og_description":"A critical severity vulnerability was discovered in the WordPress Better Search Replace plugin which has over 1 million active website installs.","og_url":"https:\/\/certera.com\/blog\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\/","og_site_name":"EncryptedFence by Certera - Web &amp; Cyber Security Blog","article_publisher":"https:\/\/www.facebook.com\/certeraLLC\/","article_published_time":"2024-02-01T10:12:10+00:00","article_modified_time":"2024-02-01T10:12:11+00:00","og_image":[{"width":960,"height":620,"url":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2024\/02\/wordpress-vulnerability-replace-better-search-jpg.webp","type":"image\/jpeg"}],"author":"Janki Mehta","twitter_card":"summary_large_image","twitter_creator":"@certera_llc","twitter_site":"@certera_llc","twitter_misc":{"Written by":"Janki Mehta","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/certera.com\/blog\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\/#article","isPartOf":{"@id":"https:\/\/certera.com\/blog\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\/"},"author":{"name":"Janki Mehta","@id":"https:\/\/certera.com\/blog\/#\/schema\/person\/e5a476aa90d9e02260ebfe4b0bf046b7"},"headline":"WordPress Vulnerability \u201cReplace Better Search\u201d Affects Up to +1 Million Websites","datePublished":"2024-02-01T10:12:10+00:00","dateModified":"2024-02-01T10:12:11+00:00","mainEntityOfPage":{"@id":"https:\/\/certera.com\/blog\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\/"},"wordCount":639,"commentCount":0,"publisher":{"@id":"https:\/\/certera.com\/blog\/#organization"},"image":{"@id":"https:\/\/certera.com\/blog\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\/#primaryimage"},"thumbnailUrl":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2024\/02\/wordpress-vulnerability-replace-better-search-jpg.webp","keywords":["Better Search Replace WordPress Plugin","PHP Object Injection Vulnerability","WordPress Vulnerabilities"],"articleSection":["WordPress Support Service"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/certera.com\/blog\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\/#respond"]}],"copyrightYear":"2024","copyrightHolder":{"@id":"https:\/\/certera.com\/blog\/#organization"}},{"@type":"WebPage","@id":"https:\/\/certera.com\/blog\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\/","url":"https:\/\/certera.com\/blog\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\/","name":"WordPress Vulnerability Replace Better Search Affects 1 Million Sites","isPartOf":{"@id":"https:\/\/certera.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/certera.com\/blog\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\/#primaryimage"},"image":{"@id":"https:\/\/certera.com\/blog\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\/#primaryimage"},"thumbnailUrl":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2024\/02\/wordpress-vulnerability-replace-better-search-jpg.webp","datePublished":"2024-02-01T10:12:10+00:00","dateModified":"2024-02-01T10:12:11+00:00","description":"A critical severity vulnerability was discovered in the WordPress Better Search Replace plugin which has over 1 million active website installs.","breadcrumb":{"@id":"https:\/\/certera.com\/blog\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/certera.com\/blog\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/certera.com\/blog\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\/#primaryimage","url":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2024\/02\/wordpress-vulnerability-replace-better-search-jpg.webp","contentUrl":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2024\/02\/wordpress-vulnerability-replace-better-search-jpg.webp","width":960,"height":620,"caption":"Better Search Replace Plugin Vulnerability"},{"@type":"BreadcrumbList","@id":"https:\/\/certera.com\/blog\/wordpress-vulnerability-replace-better-search-affects-up-to-1-million-websites\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/certera.com\/blog\/"},{"@type":"ListItem","position":2,"name":"WordPress Vulnerability \u201cReplace Better Search\u201d Affects Up to +1 Million Websites"}]},{"@type":"WebSite","@id":"https:\/\/certera.com\/blog\/#website","url":"https:\/\/certera.com\/blog\/","name":"EncryptedFence by Certera - Web & Cyber Security Blog","description":"","publisher":{"@id":"https:\/\/certera.com\/blog\/#organization"},"alternateName":"Certera's EncryptedFence Blog","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/certera.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/certera.com\/blog\/#organization","name":"Certera","url":"https:\/\/certera.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/certera.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2023\/08\/logo-encryptedfence.svg","contentUrl":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2023\/08\/logo-encryptedfence.svg","caption":"Certera"},"image":{"@id":"https:\/\/certera.com\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/certeraLLC\/","https:\/\/x.com\/certera_llc","https:\/\/www.linkedin.com\/company\/certera-llc\/"]},{"@type":"Person","@id":"https:\/\/certera.com\/blog\/#\/schema\/person\/e5a476aa90d9e02260ebfe4b0bf046b7","name":"Janki Mehta","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/1fba817ef81065f1393461fc3a0d85c40f2cc826919819ea4df4b12d76566e62?s=96&d=https%3A%2F%2Fcertera.com%2Fblog%2Fwp-content%2Fuploads%2F2023%2F02%2Fhttps-vs-sftp-jpg.webp&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/1fba817ef81065f1393461fc3a0d85c40f2cc826919819ea4df4b12d76566e62?s=96&d=https%3A%2F%2Fcertera.com%2Fblog%2Fwp-content%2Fuploads%2F2023%2F02%2Fhttps-vs-sftp-jpg.webp&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/1fba817ef81065f1393461fc3a0d85c40f2cc826919819ea4df4b12d76566e62?s=96&d=https%3A%2F%2Fcertera.com%2Fblog%2Fwp-content%2Fuploads%2F2023%2F02%2Fhttps-vs-sftp-jpg.webp&r=g","caption":"Janki Mehta"},"description":"Janki Mehta is a passionate Cyber-Security Enthusiast who keenly monitors the latest developments in the Web\/Cyber Security industry. She puts her knowledge into practice and helps web users by arming them with the necessary security measures to stay safe in the digital world.","sameAs":["https:\/\/certerassl.com\/"],"url":"https:\/\/certera.com\/blog\/author\/certerabguser\/"}]}},"_links":{"self":[{"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/posts\/2164","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/comments?post=2164"}],"version-history":[{"count":2,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/posts\/2164\/revisions"}],"predecessor-version":[{"id":2166,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/posts\/2164\/revisions\/2166"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/media\/2167"}],"wp:attachment":[{"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/media?parent=2164"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/categories?post=2164"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/tags?post=2164"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}