CVE-2022-3142
published 2022-09-19CVE-2022-3142: The NEX-Forms WordPress plugin before 7.9.7 does not properly sanitise and escape user input before using it in SQL statements, leading to SQL injections. The…
PriorityP264high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EXPLOIT
EPSS
10.38%
95.2th percentile
The NEX-Forms WordPress plugin before 7.9.7 does not properly sanitise and escape user input before using it in SQL statements, leading to SQL injections. The attack can be executed by anyone who is permitted to view the forms statistics chart, by default administrators, however can be configured otherwise via the plugin settings.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| basixonline | nex-forms | < 7.9.7 | 7.9.7 |
Detection & IOCsextracted from sources · hover to see the quote
- ·The attack surface may extend beyond administrators if the plugin is configured to allow lower-privileged users to view forms statistics charts. ↗
- ·The vulnerability affects NEX-Forms plugin versions before 7.9.7; the exploit PoC was demonstrated on version 5.0.12. ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
NEX-Forms WordPress plugin < 7.9.7 - Authenticated SQLi
exploitdb·2023-03-25·CVSS 8.8
CVE-2022-3142 [HIGH] NEX-Forms WordPress plugin < 7.9.7 - Authenticated SQLi
NEX-Forms WordPress plugin =5.0.12 AND time-based blind (query SLEEP)
Payload: page=nex-forms-dashboard&form_id=1 AND (SELECT 4715 FROM (SELECT(SLEEP(5)))nPUi)
Nuclei
NEX-Forms Plugin < 7.9.7 - SQL Injection
nuclei·CVSS 8.8
CVE-2022-3142 [HIGH] NEX-Forms Plugin < 7.9.7 - SQL Injection
NEX-Forms Plugin =7'
- 'status_code_2 == 200'
- 'contains(body_2, "NEX-Forms")'
- 'contains(content_type_2, "text/html")'
condition: and
# digest: 490a0046304402204674074815855e49e5fb8599354613784f7a6146b3f34ee2893279654d147e4f02207b6fd8b9ec055367c28e40c5b58d5e27fa1530bc4905437e23f3e19980431c9a:922c64590222798bb761d5b6d8e72950
No writeups or analysis indexed.
http://packetstormsecurity.com/files/171477/WordPress-NEX-Forms-SQL-Injection.htmlhttps://medium.com/%40elias.hohl/authenticated-sql-injection-vulnerability-in-nex-forms-wordpress-plugin-35b8558dd0f5https://wpscan.com/vulnerability/8acc0fc6-efe6-4662-b9ac-6342a7823328http://packetstormsecurity.com/files/171477/WordPress-NEX-Forms-SQL-Injection.htmlhttps://medium.com/%40elias.hohl/authenticated-sql-injection-vulnerability-in-nex-forms-wordpress-plugin-35b8558dd0f5https://wpscan.com/vulnerability/8acc0fc6-efe6-4662-b9ac-6342a7823328
2022-09-19
Published