logoWordPressPluginsThemesAPISubmitContact
search-icon
logo
search-icon
WordPressPluginsThemesAPISubmitContactSecurity Scanner
Register

WordPress 2.3.0-4.7.4 - Authenticated SQL injection

Description

Due bad solution of the database abstraction library WordPress exposes itself towards SQL Injection and validation bypass. Beside WordPress itself this issue have huge impact towards complete WP ecosystem.

Up to WordPress 4.8.1 is vulnerable, but this time attack is dependent from another plugins / themes / setup.

Affects WordPresses

3.8.1

Fixed in version 4.7.5

3.8

Fixed in version 4.7.5

3.7.1

Fixed in version 4.7.5

3.6

Fixed in version 4.7.5

3.5.2

Fixed in version 4.7.5

3.5.1

Fixed in version 4.7.5

3.5

Fixed in version 4.7.5

3.4.2

Fixed in version 4.7.5

3.4.1

Fixed in version 4.7.5

3.4

Fixed in version 4.7.5

References

URL

https://medium.com/websec/wordpress-sqli-bbb2afcc8e94

URL

https://wordpress.org/news/2017/09/wordpress-4-8-2-security-and-maintenance-release/

URL

https://github.com/WordPress/WordPress/commit/70b21279098fc973eae803693c0705a548128e48

URL

https://wpvulndb.com/vulnerabilities/8905

Classification

Type

SQLI

OWASP top 10

A1: Injection

CWE

CWE-89

Miscellaneous

Submitter

Slavco

Submitter website

https://medium.com/websec

Submitter twitter

mslavco

Verified

No

WPVDB ID

95e87ae5-eb01-4e27-96d3-b1f013deff1c

Timeline

Publicly Published

2017-08-24 (about 4 years ago)

Added

2017-09-20 (about 4 years ago)

Last Updated

2019-11-01 (about 1 years ago)

Our Other Services

WPScan WordPress Security Plugin