WordPress wpSS plugin 'ss _ handler. php' SQL Injection Vulnerability

WordPress wpSS plugin 'ss _ handler. php' SQL Injection Vulnerability

Release date:
Updated on:

Affected Systems:
WordPress wpSS
Description:
--------------------------------------------------------------------------------
Bugtraq id: 69089
 
WpSS is the workbook plug-in used in WordPress. It allows interactive workbooks to be embedded in WordPress blogs.
 
WpSS 0.62 and other versions do not effectively filter user data. An SQL injection vulnerability exists in implementation. Attackers can exploit this vulnerability to perform unauthorized database operations.
 
<* Source: Ashiyane Digital Security Team
*>

Test method:
--------------------------------------------------------------------------------

Alert

The following procedures (methods) may be offensive and are intended only for security research and teaching. Users are at your own risk!
Http://www.example.com/wordpress/wp-content/plugins/wpSS/ss_handler.php? Ss_id =-20% 20 UNION % 20ALL % 20 SELECT % ,,2, 3,4 #

Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
 
WordPress
---------
Currently, the vendor does not provide patches or upgrade programs. We recommend that users who use the software follow the vendor's homepage to obtain the latest version:
 
Http://wordpress.org/

This article permanently updates the link address: