cbcvebase.
CVE-2022-3254
published 2022-10-31

CVE-2022-3254: The WordPress Classifieds Plugin WordPress plugin before 4.3 does not properly sanitise and escape some parameters before using them in a SQL statement via an…

PriorityP179critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
5.10%
91.3th percentile
The WordPress Classifieds Plugin WordPress plugin before 4.3 does not properly sanitise and escape some parameters before using them in a SQL statement via an AJAX action available to unauthenticated users and when a specific premium module is active, leading to a SQL injection

Affected

1 ranges
VendorProductVersion rangeFixed in
strategy11awp_classifieds< 4.34.3

Detection & IOCsextracted from sources · hover to see the quote

url/wp-admin/admin-ajax.php?action=awpcp-get-regions-options&context=search&parent_type=country&parent=test&type=id`+FROM+wp_users+WHERE+1=0+UNION+SELECT+VERSION();--+-
path/wp-admin/admin-ajax.php
pathplugins/another-wordpress-classifieds-plugin/
  • The vulnerable AJAX action is `awpcp-get-regions-options`, triggered via GET request to wp-admin/admin-ajax.php with no authentication required. The `type` parameter is injectable.
  • A successful SQL injection response returns HTTP 200 with a JSON body containing both `options` and `status` keys, and `options` is neither false nor an empty array.
  • Exploit requires the premium module of the AWP Classifieds plugin to be active; scan for plugin path `plugins/another-wordpress-classifieds-plugin/` to identify targets.
  • ·Exploitation requires a specific premium module of the WordPress Classifieds Plugin (AWP Classifieds) to be active; the vulnerability is not exploitable on installations using only the free/base plugin.

CVSS provenance

nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
vulncheck9.8CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.