CVE-2022-0787
published 2022-03-28CVE-2022-0787: The Limit Login Attempts (Spam Protection) WordPress plugin before 5.1 does not sanitise and escape some parameters before using them in SQL statements via…
PriorityP266critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EXPLOIT
EPSS
8.85%
94.6th percentile
The Limit Login Attempts (Spam Protection) WordPress plugin before 5.1 does not sanitise and escape some parameters before using them in SQL statements via AJAX actions (available to unauthenticated users), leading to SQL Injections
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| limit_login_attempts_project | limit_login_attempts | < 5.1 | 5.1 |
Detection & IOCsextracted from sources · hover to see the quote
otheriTotalDisplayRecords
- →HTTP response status 200 with Content-Type text/html containing 'iTotalDisplayRecords' in the body may indicate successful exploitation of the SQL injection via AJAX action in Limit Login Attempts (Spam Protection) plugin before 5.1
- →The SQL injection is reachable via AJAX actions available to unauthenticated users — monitor for unexpected AJAX requests to wp-admin/admin-ajax.php from unauthenticated sessions targeting this plugin ↗
- ·Vulnerability affects Limit Login Attempts (Spam Protection) plugin versions before 5.1; ensure detection targets only those versions ↗
- ·The nuclei-style digest/signature present in the detection template should be validated against the canonical template source before operational deployment
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
cisa7.8HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-mv3w-5q88-w6jv: The Limit Login Attempts (Spam Protection) WordPress plugin before 5
ghsa_unreviewed·2022-03-29
CVE-2022-0787 [CRITICAL] CWE-89 GHSA-mv3w-5q88-w6jv: The Limit Login Attempts (Spam Protection) WordPress plugin before 5
The Limit Login Attempts (Spam Protection) WordPress plugin before 5.1 does not sanitise and escape some parameters before using them in SQL statements via AJAX actions (available to unauthenticated users), leading to SQL Injections
CISA
Microsoft Windows Background Intelligent Transfer Service (BITS) Improper Privilege Management Vulnerability
cisa·2022-01-28·CVSS 7.8
CVE-2020-0787 [HIGH] CWE-269 Microsoft Windows Background Intelligent Transfer Service (BITS) Improper Privilege Management Vulnerability
Vulnerability: Microsoft Windows Background Intelligent Transfer Service (BITS) Improper Privilege Management Vulnerability
Affected: Microsoft Windows
Microsoft Windows BITS is vulnerable to to a privilege elevation vulnerability if it improperly handles symbolic links. An actor can exploit this vulnerability to execute arbitrary code with system-level privileges.
Required Action: Apply updates per vendor instructions.
Notes: https://nvd.nist.gov/vuln/detail/CVE-2020-0787
Remediation Due Date: 2022-07-28
No detection rules found.
Nuclei
Limit Login Attempts (Spam Protection) < 5.1 - SQL Injection
nuclei·CVSS 9.8
CVE-2022-0787 [CRITICAL] Limit Login Attempts (Spam Protection) < 5.1 - SQL Injection
Limit Login Attempts (Spam Protection) =6
- status_code == 200
- contains(header, "text/html")
- contains(body, 'iTotalDisplayRecords')
condition: and
# digest: 4a0a00473045022100e0cb6dd6901b2aeadac929176021362a6034e3c2d1405f6b5604a140f589cc7b022014b3ae31322384145f8f7a6f38ae84b649e113e7f8ecbe9e4b34b054faa06976:922c64590222798bb761d5b6d8e72950
2022-03-28
Published