The get_query() function of the Ni WooCommerce Custom Order Status WordPress plugin before 1.9.7, used by the niwoocos_ajax AJAX action, available to all authenticated users, does not properly sanitise the sort parameter before using it in a SQL statement, leading to an SQL injection, exploitable by any authenticated users, such as subscriber
References
| Link | Resource |
|---|---|
| https://wpscan.com/vulnerability/a1e7cd2b-8400-4c5d-8b47-a8ccd1e21675 | Exploit Third Party Advisory |
| https://wpscan.com/vulnerability/a1e7cd2b-8400-4c5d-8b47-a8ccd1e21675 | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 05:53
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://wpscan.com/vulnerability/a1e7cd2b-8400-4c5d-8b47-a8ccd1e21675 - Exploit, Third Party Advisory |
27 Dec 2021, 15:58
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:a:ni_woocommerce_custom_order_status_project:ni_woocommerce_custom_order_status:*:*:*:*:*:wordpress:*:* | |
| CVSS |
v2 : v3 : |
v2 : 6.5
v3 : 8.8 |
| References | (MISC) https://wpscan.com/vulnerability/a1e7cd2b-8400-4c5d-8b47-a8ccd1e21675 - Exploit, Third Party Advisory |
21 Dec 2021, 09:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2021-12-21 09:15
Updated : 2024-11-21 05:53
NVD link : CVE-2021-24846
Mitre link : CVE-2021-24846
CVE.ORG link : CVE-2021-24846
JSON object : View
Products Affected
ni_woocommerce_custom_order_status_project
- ni_woocommerce_custom_order_status
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')