CVE-2022-45808
published 2023-01-26CVE-2022-45808: SQL Injection vulnerability in LearnPress – WordPress LMS Plugin <= 4.1.7.3.2 versions.
PriorityP178critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
4.27%
89.8th percentile
SQL Injection vulnerability in LearnPress – WordPress LMS Plugin <= 4.1.7.3.2 versions.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| thimpress | learnpress | <= 4.1.7.3.2 | — |
| thimpress | learnpress_wordpress_lms_plugin | n/a – 4.1.7.3.2 | — |
Detection & IOCsextracted from sources · hover to see the quote
bytes
4a0a00473045022034091fea7be13a3a1fe1d2df49aa59d878e1ddf2b81fede61fd592e43eda7eb8022100c481a3b49e46cf2316b0c07131a5b8aa16994d12379be07e01ddcf574d845e33:922c64590222798bb761d5b6d8e72950
- →Probe payload for SQL injection uses a single-quote character appended to the plugin version parameter, e.g. '6'' — look for anomalous single-quote characters in LearnPress API request bodies.
- ·Vulnerability affects LearnPress WordPress LMS Plugin versions up to and including 4.1.7.3.2 only; versions beyond this are not confirmed affected by this CVE. ↗
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
vulncheck9.9CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-m33h-m49h-9cf4: SQL Injection vulnerability in LearnPress – WordPress LMS Plugin <= 4
ghsa_unreviewed·2023-07-06
CVE-2022-45808 [CRITICAL] CWE-89 GHSA-m33h-m49h-9cf4: SQL Injection vulnerability in LearnPress – WordPress LMS Plugin <= 4
SQL Injection vulnerability in LearnPress – WordPress LMS Plugin <= 4.1.7.3.2 versions.
VulnCheck
thimpress learnpress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
vulncheck·2022·CVSS 9.9
CVE-2022-45808 [CRITICAL] thimpress learnpress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
thimpress learnpress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
SQL Injection vulnerability in LearnPress – WordPress LMS Plugin <= 4.1.7.3.2 versions.
Affected: thimpress learnpress
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/learnpress/learnpress-41732-unauthenticated-sql-injection
Exploit PoC: https://vulncheck.com/xdb/0976f2dec404
No detection rules found.
Nuclei
LearnPress Plugin < 4.2.0 - Unauthenticated Time-Based Blind SQLi
nuclei·CVSS 9.8
CVE-2022-45808 [CRITICAL] LearnPress Plugin < 4.2.0 - Unauthenticated Time-Based Blind SQLi
LearnPress Plugin = 6'
- 'contains_all(body, "status", "message")'
- 'contains(content_type, "application/json")'
- 'status_code == 200'
condition: and
# digest: 4a0a00473045022034091fea7be13a3a1fe1d2df49aa59d878e1ddf2b81fede61fd592e43eda7eb8022100c481a3b49e46cf2316b0c07131a5b8aa16994d12379be07e01ddcf574d845e33:922c64590222798bb761d5b6d8e72950
No writeups or analysis indexed.
https://patchstack.com/articles/multiple-critical-vulnerabilities-fixed-in-learnpress-plugin-version/https://patchstack.com/database/vulnerability/learnpress/wordpress-learnpress-wordpress-lms-plugin-plugin-4-1-7-3-2-sql-injection?_s_id=cvehttps://patchstack.com/articles/multiple-critical-vulnerabilities-fixed-in-learnpress-plugin-version/https://patchstack.com/database/vulnerability/learnpress/wordpress-learnpress-wordpress-lms-plugin-plugin-4-1-7-3-2-sql-injection?_s_id=cve
2023-01-26
Published
Exploited in the wild