← back
CVE-2021-25076

WP User Frontend < 3.5.26 - SQL Injection to Reflected Cross-Site Scripting

EPSS 17.1%CWE-89
The WP User Frontend WordPress plugin before 3.5.26 does not validate and escape the status parameter before using it in a SQL statement in the Subscribers dashboard, leading to an SQL injection. Due to the lack of sanitisation and escaping, this could also lead to Reflected Cross-Site Scripting
Affected products
Unknown · WP User Frontend – Membership, Profile, Registration & Post Submission Plugin for WordPress
public PoCs found3
githubgithub.com/abbarhissarh/CVE-2021-250763cve_referencepacketstormsecurity.com/files/166071/WordPress-WP-User-Frontend-3.5.25-SQL-Injection.htmlunverifiedexploitdbwww.exploit-db.com/exploits/50772unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/166071/WordPress-WP-User-Frontend-3.5.25-SQL-Injection.htmlhttps://plugins.trac.wordpress.org/changeset/2648715https://wpscan.com/vulnerability/6d3eeba6-5560-4380-a6e9-f008a9112ac6