Chopslider <= 3.4 - Unauthenticated Blind SQL Injection



Description
The id parameter of the get_script/index.php page is not sanitised when used in a SQL statement, leading to an unauthenticated blind SQL Injection issue.

Vendor was contacted by researcher, on March 3rd, 2020 but no reply was received.
Proof of Concept The PoC will be displayed once the issue has been remediated.

Affects Plugin

no known fix

References

CVE 2020-11530
URL https://seclists.org/fulldisclosure/2020/May/26

Classification

Type SQLI
OWASP Top 10 A1: Injection
CWE CWE-89

Miscellaneous

Original Researcher Callum Murphy
Views 886
Verified No
WPVDB ID 10216

Timeline

Publicly Published 2020-05-09 (17 days ago)
Added 2020-05-09 (16 days ago)
Last Updated 2020-05-12 (13 days ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin