CVE-2021-32789 PoC — WordPress SQL注入漏洞

Source

https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2021/CVE-2021-32789.yaml

Associated Vulnerability

Title:WordPress SQL注入漏洞 (CVE-2021-32789)
Description:WordPress是WordPress（Wordpress）基金会的一套使用PHP语言开发的博客平台。该平台支持在PHP和MySQL的服务器上架设个人博客网站。 WordPress WooCommerce Blocks 功能插件2.5.0 版和 2.5.16 版之前存在SQL注入漏洞，该漏洞允许通过精心设计的 URL，针对wc/store/products/collection-data?calculate_attribute_counts[][taxonomy]执行只读 sql 查询的端点执行漏洞利用。

Description

woocommerce-gutenberg-products-block is a feature plugin for WooCommerce Gutenberg Blocks. An SQL injection vulnerability impacts all WooCommerce sites running the WooCommerce Blocks feature plugin between version 2.5.0 and prior to version 2.5.16. Via a carefully crafted URL, an exploit can be executed against the `wc/store/products/collection-data?calculate_attribute_counts[][taxonomy]` endpoint that allows the execution of a read only sql query. There are patches for many versions of this package, starting with version 2.5.16. There are no known workarounds aside from upgrading.

File Snapshot


 id: CVE-2021-32789

info:
  name: WooCommerce Blocks 2.5 to 5.5 - Unauthenticated SQL Injection
  au

...

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!