Outdoor WordPress Plugin SQL Injection Vulnerability

A SQL injection vulnerability has been identified in the Outdoor plugin for WordPress, affecting all versions through 1.3.2. The issue arises from inadequate escaping of user-supplied parameters and insufficient preparation of the SQL query, allowing unauthenticated attackers to inject additional SQL commands. This exploitation could lead to the extraction of sensitive information from the database.

Impact

Exploitation of this vulnerability allows for SQL injection, where an attacker can manipulate SQL queries to access or modify database information. In this case, the vulnerability could be used to extract sensitive data from the database.

Reproduction

To reproduce this vulnerability, send a request to the WordPress site with the 'edit' action. Include the 'field' and 'value' parameters, along with the 'id_row' parameter, which should be the ID of the row to be edited. The lack of proper sanitization and preparation of these parameters in the SQL query allows for the injection of malicious SQL code.

Remediation

No known patch is available for this vulnerability. It is recommended to uninstall the affected plugin and find a replacement.