Newsletter by Supsystic <= 1.5.6 - Authenticated SQL Injection

Description

The GET parameter "sidx" is used in a SQL statement without being sanitised when searching for subscribers in the dashboard, leading to an authenticated SQL Injection issue.

Proof of Concept

The PoC will be displayed once the issue has been remediated

Affects Plugins

newsletter-by-supsystic

No known fix - plugin closed

References

ExploitDB

49539

Classification

Type

SQLI

OWASP top 10

A1: Injection

CWE

CWE-89

Miscellaneous

Original Researcher

Erik David Martin

Verified

Yes

WPVDB ID

559ea8cd-b4f5-4332-b581-9162e9cca5ff

Timeline

Publicly Published

2021-02-08 (about 2 months ago)

Added

2021-02-08 (about 2 months ago)

Last Updated

2021-02-10 (about 2 months ago)

Our Other Services

WPScan WordPress Security Plugin