CVE-2020-7047
published 2020-01-16CVE-2020-7047: The WordPress plugin, WP Database Reset through 3.1, contains a flaw that gave any authenticated user, with minimal permissions, the ability (with a simple…
PriorityP276high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
ITWVulnCheck KEV
Exploited in the wild
EPSS
2.46%
82.5th percentile
The WordPress plugin, WP Database Reset through 3.1, contains a flaw that gave any authenticated user, with minimal permissions, the ability (with a simple wp-admin/admin.php?db-reset-tables[]=users request) to escalate their privileges to administrator while dropping all other users from the table.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| webfactoryltd | wp_database_reset | <= 3.1 | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Detect exploit attempts by matching HTTP request path containing 'admin' AND query string containing 'db-reset-tables' ↗
- →Qualys WAS QID 150274 provides passive detection of the vulnerable WP Database Reset plugin ↗
- ·Vulnerability affects WP Database Reset plugin versions prior to 3.15; versions through 3.1 are confirmed vulnerable ↗
- ·The privilege escalation attack vector requires only minimal authenticated permissions — no admin role needed to trigger the exploit ↗
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv3.09.9CRITICALCVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
nvdv2.06.5MEDIUMAV:N/AC:L/Au:S/C:P/I:P/A:P
vulncheck8.8HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-9f6m-8x44-j5mr: The WordPress plugin, WP Database Reset through 3
ghsa_unreviewed·2022-05-24
CVE-2020-7047 [MEDIUM] GHSA-9f6m-8x44-j5mr: The WordPress plugin, WP Database Reset through 3
The WordPress plugin, WP Database Reset through 3.1, contains a flaw that gave any authenticated user, with minimal permissions, the ability (with a simple wp-admin/admin.php?db-reset-tables[]=users request) to escalate their privileges to administrator while dropping all other users from the table.
VulnCheck
webfactoryltd wp_database_reset Improper Privilege Management
vulncheck·2020·CVSS 8.8
CVE-2020-7047 [HIGH] webfactoryltd wp_database_reset Improper Privilege Management
webfactoryltd wp_database_reset Improper Privilege Management
The WordPress plugin, WP Database Reset through 3.1, contains a flaw that gave any authenticated user, with minimal permissions, the ability (with a simple wp-admin/admin.php?db-reset-tables[]=users request) to escalate their privileges to administrator while dropping all other users from the table.
Affected: webfactoryltd wp_database_reset
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/wordpress-database-reset/wp-database-reset-31-privilege-escalation
No detection rules found.
No public exploits indexed.
Qualys
Wordpress Database Reset Plugin Vulnerability (CVE-2020-7047, CVE-2020-7048) | Qualys
blogs_qualys·2020-01-24·CVSS 8.8
CVE-2020-7047 [HIGH] Wordpress Database Reset Plugin Vulnerability (CVE-2020-7047, CVE-2020-7048) | Qualys
A vulnerability recently disclosed by Wordfence and published as CVE-2020-7047 and CVE-2020-7048 allows an attacker to take over vulnerable WordPress-based websites.
Functionality in the WP Database Reset plugin introduced the vulnerability, which allows any unauthenticated user to reset any table in the database to its initial state when it was installed, deleting all the content in the database.
Details about the vulnerability can be found at CVE-2020-7047 and CVE-2020-7048.
It is also possible for an attacker to completely take over the target application. Given that all the data can be deleted from the database, an attacker can delete the designated WordPress admin and take over the role and become administrator of the website.
The vulnerability affects the WordPress Database Reset
Qualys
WordPress Database Reset Plugin Vulnerability (CVE-2020-7047, CVE-2020-7048)
blogs_qualys·2020-01-24·CVSS 8.8
CVE-2020-7047 [HIGH] WordPress Database Reset Plugin Vulnerability (CVE-2020-7047, CVE-2020-7048)
A vulnerability recently disclosed by Wordfence and published as CVE-2020-7047 and CVE-2020-7048 allows an attacker to take over vulnerable WordPress-based websites.
Functionality in the WP Database Reset plugin introduced the vulnerability, which allows any unauthenticated user to reset any table in the database to its initial state when it was installed, deleting all the content in the database.
Details about the vulnerability can be found at CVE-2020-7047 and CVE-2020-7048 .
It is also possible for an attacker to completely take over the target application. Given that all the data can be deleted from the database, an attacker can delete the designated WordPress admin and take over the role and become administrator of the website.
The vulnerability affects the WordPress Database Rese
https://wordpress.org/plugins/wordpress-database-reset/#developershttps://wpvulndb.com/vulnerabilities/10028https://www.wordfence.com/blog/2020/01/easily-exploitable-vulnerabilities-patched-in-wp-database-reset-plugin/https://wordpress.org/plugins/wordpress-database-reset/#developershttps://wpvulndb.com/vulnerabilities/10028https://www.wordfence.com/blog/2020/01/easily-exploitable-vulnerabilities-patched-in-wp-database-reset-plugin/
2020-01-16
Published
Exploited in the wild