WordPress Plugin Vulnerabilities

Recall Products <= 0.8 - Authenticated SQL Injection

Description

The `Manufacturer[]` POST parameter is vulnerable to SQL injection when submitting a deletion request.

Proof of Concept

Affects Plugins

Plugin icon
recall-products
No known fix

References

CVE
CVE-2020-25379
URL
https://zeroaptitude.com/misha/wordpress-plugin-bug-hunting-part-2/

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89
CVSS
6.7 (medium)

Miscellaneous

Original Researcher
ZeroAptitude
Verified
No
WPVDB ID
6e106f66-c84c-4243-b91e-9afe43eae418

Timeline

Publicly Published
2020-08-31 (about 5 years ago)
Added
2020-08-31 (about 5 years ago)
Last Updated
2020-09-16 (about 5 years ago)

Other

Published
Title
Published
2023-04-03
Title
Random Text <= 0.3.0 - Subscriber+ SQLi
Published
2020-11-02
Title
WP Activity Log < 4.1.5 - SQL Injection in External Database Module
Published
2014-08-01
Title
Count per Day < 3.0 - SQL Injection
Published
2024-11-01
Title
BetterLinks < 2.1.8 - Authenticated (Administrator+) SQL Injection
Published
2025-01-23
Title
Simple Downloads List < 1.4.3 - Authenticated (Contributor+) SQL Injection