WordPress Plugin Vulnerabilities
Custom Permalinks <= 1.1 - Authenticated SQL Injection
Description
Missing checking of user controllable input during Bulk Action in the Custom Permalinks backend page leads to SQL injection vulnerability.
Proof of Concept
Send authenticated POST request to "URL/wp-admin/admin.php?page=custom-permalinks-post-permalinks" with parameters "action=delete&permalinks[]=1) PAYLOAD -- "
Affects Plugins
Classification
Type
SQLI
OWASP top 10
CWE
Miscellaneous
Submitter
Karim El Ouerghemmi
Submitter website
Verified
No
WPVDB ID
Timeline
Publicly Published
2018-02-22 (about 6 years ago)
Added
2018-02-25 (about 6 years ago)
Last Updated
2018-02-25 (about 6 years ago)