WordPress Plugin Survey and Poll SQL Injection Vulnerability

A SQL injection vulnerability has been identified in the WordPress Plugin Survey & Poll version 1.5.7.3. This vulnerability allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the wp_sap cookie parameter. Exploitation of this vulnerability could lead to the extraction of sensitive database information, including usernames, passwords, and other confidential data from the WordPress database.

Impact

Exploitation of this vulnerability allows for arbitrary SQL query execution, which could be used to extract sensitive information from the WordPress database, such as usernames and passwords.

Reproduction

The vulnerability can be reproduced by sending a request to the WordPress site with a crafted wp_sap cookie that includes a SQL injection payload. This can be done using a web application testing tool or by manually setting the cookie in a web browser. Once the payload is executed, the injected SQL code will be processed by the database, allowing the attacker to extract sensitive information.