metasploit-framework icon indicating copy to clipboard operation
metasploit-framework copied to clipboard
verified publisher icon rapid7

Add module for TI WooCommerce Wishlist SQL Injection (CVE-2024-43917)

Open Chocapikk opened this issue 1 year ago • 1 comments

Hello Metasploit Team,

This PR introduces a new auxiliary module that exploits an unauthenticated SQL injection vulnerability in the TI WooCommerce Wishlist plugin for WordPress (versions <= 2.8.2). The vulnerability allows attackers to execute SQL queries via the order parameter. The module uses Msf::Exploit::Remote::HTTP::Wordpress::SQLi, which I integrated for handling SQL injections, though it has not yet been merged into the main framework.

Thank you for your review!

Chocapikk avatar Sep 30 '24 08:09 Chocapikk

Adding the blocked label for now until the mixin is merged as this PR requires it.

cgranleese-r7 avatar Oct 03 '24 14:10 cgranleese-r7

Release Notes

This adds a new auxiliary module that exploits an unauthenticated SQL injection vulnerability in the TI WooCommerce Wishlist plugin for WordPress (versions <= 2.8.2). The vulnerability allows attackers to execute SQL queries via the order parameter which can be used to dump usernames and their hashed passwords.

jheysel-r7 avatar Oct 31 '24 16:10 jheysel-r7