SQL Injection Vulnerability in WP Coder Plugin for WordPress
CVE-2023-0895

4.9MEDIUM

Key Information:

Vendor: Wordpress
Status: WP Coder – add custom html, css and js code
Vendor: CVE Published:; 17 February 2023

Summary

The WP Coder plugin for WordPress, which allows users to add custom HTML, CSS, and JavaScript code, has a serious security vulnerability related to time-based SQL Injection. This occurs through the 'id' parameter in versions up to and including 2.5.3. Due to inadequate parameter escaping and a lack of proper SQL query preparation, authenticated attackers with administrative privileges can exploit this flaw. By appending additional SQL commands to existing queries, they can potentially retrieve sensitive information stored in the database, thereby posing significant risks to web applications that utilize this plugin.

Affected Version(s)

WP Coder – add custom html, css and js code * <= 2.5.3

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...

https://plugins.trac.wordpress.org/changeset?old=2757782&...

CVSS V3.1

Score:

4.9

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 17, 2023
Vulnerability Reserved
Feb 17, 2023

Credit

Etan Imanol Castro Aldrete