cbcvebase.
CVE-2022-0867
published 2022-05-16

CVE-2022-0867: The Pricing Table WordPress plugin before 3.6.1 fails to properly sanitize and escape user supplied POST data before it is being interpolated in an SQL…

PriorityP182critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
12.46%
95.7th percentile
The Pricing Table WordPress plugin before 3.6.1 fails to properly sanitize and escape user supplied POST data before it is being interpolated in an SQL statement and then executed via an AJAX action available to unauthenticated users

Affected

1 ranges
VendorProductVersion rangeFixed in
reputeinfosystemspricing_table< 3.6.13.6.1

Detection & IOCsextracted from sources · hover to see the quote

sigma
title: WordPress ARPrice SQLi
condition: and
detection:
  selection_1:
    status_code_1: 200
  selection_2:
    content_type_1|contains: 'text/html'
  selection_3:
    body_2|contains: 'ArpPriceTable'
  • Unauthenticated AJAX action exploitation — monitor for POST requests to WordPress AJAX endpoints (wp-admin/admin-ajax.php) from unauthenticated users targeting the Pricing Table (ARPrice) plugin, particularly payloads containing SQL metacharacters in POST data.
  • Fingerprint vulnerable installations by checking HTTP response body for the string 'ArpPriceTable', which indicates the ARPrice plugin is active and potentially exploitable.
  • ·The Sigma/nuclei-style rule digest provided in the source may be used to verify rule integrity; the digest value should be validated before deploying the rule in production.

CVSS provenance

nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vulncheck9.8CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.