WordPress 4.1-5.8.2 - SQL Injection via WP_Meta_Query

Description

Due to lack of proper sanitization in WP_Meta_Query, there's potential for blind SQL Injection.

Affects WordPresses

5.8.2

Fixed in version 5.8.3✓

5.8.1

Fixed in version 5.8.3✓

5.8

Fixed in version 5.8.3✓

5.7.4

Fixed in version 5.7.5✓

5.7.3

Fixed in version 5.7.5✓

5.7.2

Fixed in version 5.7.5✓

5.7.1

Fixed in version 5.7.5✓

5.7

Fixed in version 5.7.5✓

5.6.6

Fixed in version 5.6.7✓

5.6.5

Fixed in version 5.6.7✓

References

CVE

CVE-2022-21664

URL

https://github.com/WordPress/wordpress-develop/security/advisories/GHSA-jp3p-gw8h-6x86

Classification

Type

SQLI

OWASP top 10

A1: Injection

CWE

CWE-89

Miscellaneous

Original Researcher

Ben Bidner

Verified

Yes

WPVDB ID

24462ac4-7959-4575-97aa-a6dcceeae722

Timeline

Publicly Published

2022-01-06 (about 15 days ago)

Added

2022-01-06 (about 15 days ago)

Last Updated

2022-01-06 (about 15 days ago)

Our Other Services

WPScan WordPress Security Plugin