cbcvebase.
CVE-2022-44588
published 2022-12-15

CVE-2022-44588: Unauth. SQL Injection vulnerability in Cryptocurrency Widgets Pack Plugin <=1.8.1 on WordPress.

PriorityP263critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EXPLOIT
EPSS
2.27%
80.8th percentile
Unauth. SQL Injection vulnerability in Cryptocurrency Widgets Pack Plugin <=1.8.1 on WordPress.

Affected

2 ranges
VendorProductVersion rangeFixed in
blockseracryptocurrency_widgets_pack<= 1.8.1
blockseracryptocurrency_widgets_packn/a – 1.8.1

Detection & IOCsextracted from sources · hover to see the quote

sigma
status_code == 200 AND contains_all(body, "recordsTotal", "recordsFiltered", "draw")
  • Successful SQL injection responses against the Cryptocurrency Widgets Pack plugin can be identified by HTTP 200 responses whose body contains all three strings: 'recordsTotal', 'recordsFiltered', and 'draw' — characteristic of a DataTables JSON payload leaking database content.
  • The vulnerability is unauthenticated, so no session cookie or authentication header is required in the malicious request. Monitor for SQL injection payloads (e.g., trailing single-quote) in requests targeting the Cryptocurrency Widgets Pack plugin endpoints.
  • ·The vulnerability affects Cryptocurrency Widgets Pack plugin versions up to and including 1.8.1 on WordPress. Ensure detection rules are scoped to requests targeting this plugin's endpoints.
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.