TI WooCommerce Wishlist < 1.40.1 - Unauthenticated Blind SQL Injection
CVE-2022-0412

9.8CRITICAL

Key Information:

Vendor: Wordpress
Status: TI WooCommerce Wishlist; TI WooCommerce Wishlist Pro
Vendor: CVE Published:; 28 February 2022

Badges

👾 Exploit Exists🟡 Public PoC

Summary

The TI WooCommerce Wishlist WordPress plugin before 1.40.1, TI WooCommerce Wishlist Pro WordPress plugin before 1.40.1 do not sanitise and escape the item_id parameter before using it in a SQL statement via the wishlist/remove_product REST endpoint, allowing unauthenticated attackers to perform SQL injection attacks

Affected Version(s)

TI WooCommerce Wishlist 1.40.1

TI WooCommerce Wishlist Pro 1.40.1

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2022-0412_Exploit
Created by TcherB31

References

https://wpscan.com/vulnerability/e984ba11-abeb-4ed4-9dad-...

x_refsource_MISC

https://plugins.trac.wordpress.org/changeset/2668899

x_refsource_CONFIRM

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

🟡
Public PoC available
Aug 25, 2023
👾
Exploit known to exist
Aug 25, 2023
Vulnerability published
Feb 28, 2022
Vulnerability Reserved
Jan 29, 2022

Credit

Krzysztof Zając