WP AutoSuggest SQL Injection Vulnerability

A SQL injection vulnerability has been identified in the WP AutoSuggest WordPress plugin, specifically in version 0.24. This vulnerability allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'wpas_keys' parameter. Exploitation involves sending GET requests to 'autosuggest.php' with crafted 'wpas_keys' values, which can be used to extract sensitive database information from WordPress posts and other tables.

Impact

Exploitation of this vulnerability allows for SQL injection, where an attacker can manipulate database queries to execute arbitrary SQL commands. This could lead to unauthorized data access, data manipulation, or in some cases, executing administrative operations on the WordPress site.

Reproduction

To reproduce this vulnerability, send a GET request to 'wp-content/plugins/wp-autosuggest/autosuggest.php' with the 'wpas_keys' parameter. Inject SQL code into the 'wpas_keys' parameter to manipulate the SQL query that retrieves WordPress posts. The injected SQL can be crafted to extract sensitive information from the database.