SQL Injection Vulnerability in Web Directory Free WordPress Plugin
CVE-2024-3552

9.8CRITICAL

Key Information:

Vendor: Wordpress
Status: Web Directory Free
Vendor: CVE Published:; 13 June 2024

Badges

👾 Exploit Exists🟡 Public PoC

Summary

A vulnerability exists in the Web Directory Free WordPress plugin prior to version 1.7.0, where an insufficient sanitization process allows for the exploitation of SQL commands through an AJAX action that is accessible to unauthenticated users. This weakness enables attackers to perform various SQL injection techniques such as UNION, Time-Based, and Error-Based attacks. The lack of proper escaping of parameters when constructing SQL statements poses a significant risk, potentially compromising database integrity and exposing sensitive information.

Affected Version(s)

Web Directory Free 0 < 1.7.0

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2024-3552 - Proof of Concept

References

https://wpscan.com/vulnerability/34b03ee4-de81-4fec-9f3d-...

exploitvdb-entrytechnical-description

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

🟡
Public PoC available
Jun 13, 2024
👾
Exploit known to exist
Jun 13, 2024
Vulnerability published
Jun 13, 2024
Vulnerability Reserved
Apr 9, 2024

Credit

Simone Onofri

Kim Cerra

Andrea De Dominicis

WPScan