WordPress Plugin Vulnerabilities

Task Manager Pro < 3.6.34 - Follower+ SQLi

Description

The plugin does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as low as follower

Proof of Concept

Affects Plugins

Plugin icon
task-manager-pro
Fixed in 3.6.34

References

URL
https://packetstormsecurity.com/files/#143419/
URL
https://codecanyon.net/item/task-manager-pro-all-in-one-project-based-task-management-plugin-for-wordrpress/19864872

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89
CVSS
7.7 (high)

Miscellaneous

Submitter
8bitsec
Submitter website
https://8bitsec.io
Submitter twitter
_8bitsec
Verified
No
WPVDB ID
47573db5-93a7-4b55-bfff-0ae3ef45d51d

Timeline

Publicly Published
2017-07-19 (about 8 years ago)
Added
2017-07-25 (about 8 years ago)
Last Updated
2023-09-20 (about 2 years ago)

Other

Published
Title
Published
2014-08-01
Title
plugin WP-Forum 1.7.8 - Remote SQL Injection
Published
2017-06-04
Title
Event List <= 0.7.8 - Authenticated SQL Injection
Published
2015-07-08
Title
WP Shop <= 3.4.3.15 - Unauthenticated Blind SQL Injection
Published
2025-12-01
Title
WP Directory Kit < 1.4.7 - Authenticated (Admin+) SQL Injection
Published
2025-12-15
Title
Ninja Tables < 5.2.4 - Authenticated (Administrator+) SQL Injection