WordPress Plugin Vulnerabilities

Pricing Deals for WooCommerce < 2.0.3 - Unauthenticated SQLi

Description

The plugin does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to an unauthenticated SQL injection

Proof of Concept

Affects Plugins

Plugin icon
pricing-deals-for-woocommerce
Fixed in 2.0.3

References

CVE
CVE-2022-1057

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89
CVSS
8.6 (high)

Miscellaneous

Original Researcher
wuzhenyu
Submitter
king
Verified
Yes
WPVDB ID
7c33ffc3-84d1-4a0f-a837-794cdc3ad243

Timeline

Publicly Published
2022-06-16 (about 3 years ago)
Added
2022-06-16 (about 3 years ago)
Last Updated
2023-03-21 (about 2 years ago)

Other

Published
Title
Published
2025-06-19
Title
Wocommerce < 9.9.4 - Shop manager+ SQLi
Published
2023-12-21
Title
RegistrationMagic Plugin < 5.2.4.6 - Authenticated(Administrator+) SQL Injection
Published
2023-10-30
Title
Popup with fancybox < 3.6 - Authenticated (Subscriber+) SQL Injection via Shortcode
Published
2025-08-05
Title
CleverReach WP < 1.5.21 - Unauthenticated SQL Injection via title Parameter
Published
2014-08-01
Title
VideoWhisper Video Presentation <= 1.1 - SQL Injection