CVE-2021-32789 — SQL Injection in Woocommerce Blocks

CWE-89 — SQL Injection5 documents5 sources

Severity

7.5HIGHNVD

EPSS

91.4%

top 0.34%

CISA KEV

Not in KEV

Exploit

Exploited in wild

Active exploitation observed

Affected products

Automattic Woocommerce Blocks Woocommerce Woocommerce-gutenberg-products-block

Timeline

PublishedJul 26

Latest updateDec 21

Description

woocommerce-gutenberg-products-block is a feature plugin for WooCommerce Gutenberg Blocks. An SQL injection vulnerability impacts all WooCommerce sites running the WooCommerce Blocks feature plugin between version 2.5.0 and prior to version 2.5.16. Via a carefully crafted URL, an exploit can be executed against the `wc/store/products/collection-data?calculate_attribute_counts[][taxonomy]` endpoint that allows the execution of a read only sql query. There are patches for many versions of this pac…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

▶CVEListV5woocommerce/woocommerce-gutenberg-products-block> 2.5.0, < 2.5.16

▶NVDautomattic/woocommerce_blocks2.5.0 — 2.5.16+30

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

CVEList

Arbitrary SQL (SQL injection) possible via the Store API component.↗2021-07-26

▶

VulnCheck

automattic woocommerce_blocks Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')↗2021

▶

💥Exploits & PoCs

Nuclei

WooCommerce Blocks 2.5 to 5.5 - Unauthenticated SQL Injection

▶

🕵️Threat Intelligence

Unit42

Network Security Trends: August-October 2021↗2021-12-21

▶