WooCommerce Product Catalog Plugin Vulnerable to PHP Object Injection
CVE-2024-8922

8.8HIGH

Key Information:

Vendor: Wordpress
Status: Product Enquiry For WooCommerce, WooCommerce Product Catalog
Vendor: CVE Published:; 27 September 2024

Summary

The WooCommerce Product Enquiry plugin for WordPress is susceptible to a PHP Object Injection vulnerability due to deserialization of untrusted input in the enquiry_detail.php file. This vulnerability impacts all versions up to and including 2.2.33.32. Authenticated attackers with Author-level access or higher can exploit this weakness by injecting a PHP Object. Although no known PHP Object Pollution (POP) chain exists in the vulnerable software, it poses risks if a POP chain is introduced through additional plugins or themes on the target site. Exploitation could enable attackers to delete arbitrary files, retrieve sensitive information, or execute malicious code, thereby compromising the security of WordPress installations.

Affected Version(s)

Product Enquiry for WooCommerce, WooCommerce product catalog * <= 2.2.33.33

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...

https://plugins.trac.wordpress.org/changeset/3155863/enqu...

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 27, 2024
Vulnerability Reserved
Sep 16, 2024

Credit

Francesco Carlucci