5 Stars Rating Funnel < 1.2.53 - Unauthenticated SQLi
CVE-2022-0657

9.8CRITICAL

Key Information:

Vendor
Wordpress
Vendor
CVE Published:
25 April 2022

Summary

The 5 Stars Rating Funnel WordPress Plugin | RRatingg WordPress plugin before 1.2.54 does not properly sanitise, validate and escape lead ids before using them in a SQL statement via the rrtngg_delete_leads AJAX action, available to unauthenticated users, leading to an unauthenticated SQL injection issue. There is an attempt to sanitise the input, using sanitize_text_field(), however such function is not intended to prevent SQL injections.

Affected Version(s)

5 Stars Rating Funnel WordPress Plugin | RRatingg 1.2.54

References

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

cydave
.
🍪 This website uses cookies, like every other website on the internet 😕 By using our website, you consent to the use of cookies.