← back
CVE-2022-25148

WP Statistics <= 13.1.5 Unauthenticated Blind SQL Injection via current_page_id

CVSS 9.8 CRITICALEPSS 81.4%CWE-89
The WP Statistics WordPress plugin is vulnerable to SQL Injection due to insufficient escaping and parameterization of the current_page_id parameter found in the ~/includes/class-wp-statistics-hits.php file which allows attackers without authentication to inject arbitrary SQL queries to obtain sensitive information, in versions up to and including 13.1.5.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
WP Statistics · WP Statistics
public PoCs found2
cve_referencepacketstormsecurity.com/files/174482/WordPress-WP-Statistics-13.1.5-SQL-Injection.htmlunverifiedexploitdbwww.exploit-db.com/exploits/51711unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/174482/WordPress-WP-Statistics-13.1.5-SQL-Injection.htmlhttps://gist.github.com/Xib3rR4dAr/5dbd58b7f57a5037fe461fba8e696042https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=2679983%40wp-statistics&new=2679983%40wp-statistics&sfp_email=&sfph_mail=https://www.wordfence.com/vulnerability-advisories/#CVE-2022-25148