Live Forms - Visual Form Builder 3.0.1 - Blind SQL Injection

Sign up to our free email alerts service for instant vulnerability notifications!

Description
The AJAX action ‘get_reqlist’ is available to all logged in users. The parameter ‘ipp’ sent to this action is vulnerable to Blind MySQL Injection. This can be leveraged by detecting how long a query takes to return.

Affects

Plugin liveforms
fixed in version 3.2.0

References

URL https://research.g0blin.co.uk/g0blin-00034/

Classification

Type SQLI
OWASP Top 10 A1: Injection
CWE CWE-89

Miscellaneous

Submitter James Hooker
Submitter Website https://research.g0blin.co.uk
Submitter Twitter g0blinResearch
Views 171
Verified No
WPVDB ID 7855

Timeline

Publicly Published 2015-03-18 (over 1 year ago)
Added 2015-03-18 (over 1 year ago)
Last Updated 2015-05-15 (over 1 year ago)

Copyright & License

Copyright All data and resources contained within this page and this web site is Copyright © The WPScan Team.
License Some of this data may be used for non-commercial purposes, however, any potential commercial usage of this data will require a license. If you would like to inquire about a commercial license please contact us.