Passwords Manager WordPress Plugin SQL Injection Vulnerability
Vulnerability
A SQL injection vulnerability has been identified in the Passwords Manager plugin for WordPress, affecting all versions through 1.4.8. The vulnerability arises from inadequate escaping of user-supplied parameters in several AJAX functions, allowing unauthenticated attackers to inject additional SQL queries. Exploitation of this vulnerability could lead to the extraction of sensitive information from the database.
Impact
Exploitation of this vulnerability allows for SQL injection, where an attacker can manipulate SQL queries to access or modify database information. In this case, it could be used to extract sensitive data from the database.
Reproduction
The vulnerability can be reproduced by sending a request to one of the affected AJAX endpoints of the Passwords Manager plugin. The request must include a parameter that is not properly sanitized, allowing for the injection of malicious SQL code. This can be done using a tool like Burp Suite or by manually crafting the request to include the SQL injection payload.
Remediation
Users are advised to update the Passwords Manager plugin to version 1.5.1 or later, where this vulnerability has been patched.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.