WordPress Plugin Vulnerabilities

Themes Coder < 1.4.0 - Unauthenticated SQLi

Description

The plugin does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection

Proof of Concept

Affects Plugins

Plugin icon
tc-ecommerce
Fixed in 1.4.0

References

CVE
CVE-2024-13726

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89
CVSS
8.6 (high)

Miscellaneous

Original Researcher
Project Black
Submitter
Project Black
Submitter website
https://projectblack.io/penetration-testing/
Submitter twitter
project_blk
Verified
Yes
WPVDB ID
ec226d22-0c09-4e7c-86ec-b64819089b60

Timeline

Publicly Published
2025-01-27 (about 11 months ago)
Added
2025-01-27 (about 11 months ago)
Last Updated
2025-06-03 (about 6 months ago)

Other

Published
Title
Published
2024-04-25
Title
WooCommerce Amazon Affiliates <= 14.0.33 - Subscriber+ SQL Injection
Published
2021-05-19
Title
FlightLog <= 3.0.2 - Authenticated (editor+) SQL Injection
Published
2014-12-03
Title
Google Document Embedder <= 2.5.16 - SQL Injection
Published
2025-02-23
Title
Poll Maker < 5.6.6 - Authenticated (Administrator+) SQL Injection
Published
2025-03-28
Title
Duplicate Page and Post <= 1.0 - Authenticated (Contributor+) SQL Injection