Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2022-25148

CWE-89 — SQL Injection5 documents5 sources

Severity

7.5HIGH

EPSS

57.8%

top 1.82%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

WP Statistics WP Statistics Veronalabs WP Statistics

Timeline

PublishedFeb 24

Latest updateSep 4

Description

The WP Statistics WordPress plugin is vulnerable to SQL Injection due to insufficient escaping and parameterization of the current_page_id parameter found in the ~/includes/class-wp-statistics-hits.php file which allows attackers without authentication to inject arbitrary SQL queries to obtain sensitive information, in versions up to and including 13.1.5.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

▶NVDveronalabs/wp_statistics13.1.5

▶CVEListV5wp_statistics/wp_statistics13.1.5 — 13.1.5

Patches

Patch: plugins.trac.wordpress.org ↗Patch: plugins.trac.wordpress.org ↗

🔴Vulnerability Details

GHSA

GHSA-wg9m-p2x3-fg97: The WP Statistics WordPress plugin is vulnerable to SQL Injection due to insufficient escaping and parameterization of the current_page_id parameter f↗2022-02-25

▶

CVEList

WP Statistics <= 13.1.5 Unauthenticated Blind SQL Injection via current_page_id↗2022-02-24

▶

💥Exploits & PoCs

Exploit-DB

WP Statistics Plugin 13.1.5 current_page_id - Time based SQL injection (Unauthenticated)↗2023-09-04

▶

Nuclei

WordPress Plugin WP Statistics <= 13.1.5 - SQL Injection

▶