Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2021-24295 PoC — WordPress 插件 SQL注入漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/passive/cves/2022/CVE-2021-24295.yaml
Associated Vulnerability
Title:WordPress 插件 SQL注入漏洞 (CVE-2021-24295)
Description:WordPress 插件是WordPress开源的一个应用插件。 CleanTalk WordPress Plugin 5.153.4之前版本存在SQL注入漏洞,该漏洞源于lib/Cleantalk/ApbctWP/Firewall/SFW.php中的更新日志函数包含了一个易受攻击的查询。
Description
It was possible to exploit an Unauthenticated Time-Based Blind SQL Injection vulnerability in the Spam protection, AntiSpam, FireWall by CleanTalk WordPress Plugin before 5.153.4. The update_log function in lib/Cleantalk/ApbctWP/Firewall/SFW.php included a vulnerable query that could be injected via the User-Agent Header by manipulating the cookies set by the Spam protection, AntiSpam, FireWall by CleanTalk WordPress plugin before 5.153.4, sending an initial request to obtain a ct_sfw_pass_key cookie and then manually setting a separate ct_sfw_passed cookie and disallowing it from being reset.
File Snapshot

 id: CVE-2021-24295

info:
  name: Spam protection, AntiSpam, FireWall by CleanTalk < 5.153.4 - Unaut

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.