cbcvebase.
CVE-2020-7048
published 2020-01-16

CVE-2020-7048: The WordPress plugin, WP Database Reset through 3.1, contains a flaw that allowed any unauthenticated user to reset any table in the database to the initial…

PriorityP260critical9.1CVSS 3.1
AVNACLPRNUINSUCNIHAH
EPSS
22.93%
97.5th percentile
The WordPress plugin, WP Database Reset through 3.1, contains a flaw that allowed any unauthenticated user to reset any table in the database to the initial WordPress set-up state (deleting all site content stored in that table), as demonstrated by a wp-admin/admin-post.php?db-reset-tables[]=comments URI.

Affected

1 ranges
VendorProductVersion rangeFixed in
webfactoryltdwp_database_reset<= 3.1

Detection & IOCsextracted from sources · hover to see the quote

urlwp-admin/admin-post.php?db-reset-tables[]=comments
  • Detect exploit attempts by matching request path containing 'admin' AND query string containing 'db-reset-tables'
  • Qualys WAS QID 150274 provides passive detection of the vulnerable WP Database Reset plugin
  • No authentication is required to trigger the vulnerability — monitor for unauthenticated POST requests to admin-post.php with db-reset-tables parameter
  • ·Vulnerability affects WP Database Reset plugin versions prior to 3.15 only

CVSS provenance

nvdv3.19.1CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
nvdv3.09.1CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
nvdv2.06.4MEDIUMAV:N/AC:L/Au:N/C:N/I:P/A:P
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.