cbcvebase.
CVE-2020-7047
published 2020-01-16

CVE-2020-7047: The WordPress plugin, WP Database Reset through 3.1, contains a flaw that gave any authenticated user, with minimal permissions, the ability (with a simple…

PriorityP276high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
ITWVulnCheck KEV
Exploited in the wild
EPSS
2.46%
82.5th percentile
The WordPress plugin, WP Database Reset through 3.1, contains a flaw that gave any authenticated user, with minimal permissions, the ability (with a simple wp-admin/admin.php?db-reset-tables[]=users request) to escalate their privileges to administrator while dropping all other users from the table.

Affected

1 ranges
VendorProductVersion rangeFixed in
webfactoryltdwp_database_reset<= 3.1

Detection & IOCsextracted from sources · hover to see the quote

urlwp-admin/admin.php?db-reset-tables[]=users
otherdb-reset-tables
  • Detect exploit attempts by matching HTTP request path containing 'admin' AND query string containing 'db-reset-tables'
  • Qualys WAS QID 150274 provides passive detection of the vulnerable WP Database Reset plugin
  • ·Vulnerability affects WP Database Reset plugin versions prior to 3.15; versions through 3.1 are confirmed vulnerable
  • ·The privilege escalation attack vector requires only minimal authenticated permissions — no admin role needed to trigger the exploit

CVSS provenance

nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv3.09.9CRITICALCVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
nvdv2.06.5MEDIUMAV:N/AC:L/Au:S/C:P/I:P/A:P
vulncheck8.8HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.