CVE-2021-32789 PoC — WordPress SQL注入漏洞

Source

https://github.com/DonVorrin/CVE-2021-32789

Associated Vulnerability

Title:WordPress SQL注入漏洞 (CVE-2021-32789)
Description:WordPress是WordPress（Wordpress）基金会的一套使用PHP语言开发的博客平台。该平台支持在PHP和MySQL的服务器上架设个人博客网站。 WordPress WooCommerce Blocks 功能插件2.5.0 版和 2.5.16 版之前存在SQL注入漏洞，该漏洞允许通过精心设计的 URL，针对wc/store/products/collection-data?calculate_attribute_counts[][taxonomy]执行只读 sql 查询的端点执行漏洞利用。

Description

Authenticated Blind SQL Injection. Wordpress woocommerce plugin versions >= 2.5.0

Readme

# CVE-2021-32789
Authenticated Blind SQL Injection. Wordpress woocommerce plugin versions >= 2.5.0

# Install
```
git clone https://github.com/DonVorrin/CVE-2021-32789.git
cd CVE-2021-32789
sudo pip install -r requirements.txt
```

# Exploit
```
python3 exploit.py
Enter URL: (Example: http://exploit.cve/)

Enter number:
  1 - Output tables                               |
  2 - Output tables + columns                     |
  3 - Output text (need use number tabels)      <- 

The output of a single line from the database is done for convenience.
I recommend to use Web version, generate payload independently.
(See ------FOR BROWSER URL------)
```

File Snapshot


 [4.0K]  /data/pocs/5ad033fc2c98d89d386610ccc126acd04c96966d
├── [4.3K]  exploit.py
├── [ 652]  README.md
└── [   8]  requirements.txt

0 directories, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!