SNS Vulnerability

Wordpress Multiple Third Party Plugins Vulnerabilities

Description

(#Several vulnerabilities have been identified in third-party plugins for WordPress:#- Tevolution: shell upload#- Ninja Forms: SQL injection#- WP Job Manager: file upload.##Proofs of concept are available. An exploitation code is also available for the vulnerability affecting Tevolution.)

Vulnerable Products

Vulnerable Software:
WordPress (WordPress) -

Solution

- Ninja Forms: 2.9.55.2

CVE

References

- 0day.today : Wordpress WP Job Manager 1.25 Arbitrary File Upload Vulnerability
http://0day.today/exploit/25020
- CXSecurity : Wordpress Tevolution Plugin 2.3.1 Arbitrary Shell Upload Vulnerability
https://cxsecurity.com/issue/WLB-2016080137
- wpvulndb : Ninja Forms <= 2.9.55.1 - Authenticated SQL Injection
https://wpvulndb.com/vulnerabilities/8605

Vulnerability Manager Detection

IPS Protection

ASQ Engine alarm	Available Since
SQL injection Prevention - POST : suspicious UPDATE statement in data	5.0.0
SQL injection Prevention - POST : suspicious SELECT statement in data	5.0.0
SQL injection Prevention - POST : suspicious DECLARE statement in data	5.0.0
SQL injection Prevention - POST : suspicious OPENROWSET statement in data	5.0.0
SQL injection Prevention - POST : suspicious OPENQUERY statement in data	5.0.0
SQL injection Prevention - POST : suspicious CAST statement in data	5.0.0
SQL injection Prevention - POST : suspicious EXEC statement in data	5.0.0
SQL injection Prevention - POST : suspicious CREATE statement in data	5.0.0
SQL injection Prevention - POST : suspicious INSERT statement in data	5.0.0
SQL injection Prevention - POST : suspicious DROP statement in data	5.0.0
Suspicious access to a php file in a vulnerable application upload directory	5.0.0
SQL injection Prevention - POST : suspicious HAVING statement in data	5.0.0
SQL injection Prevention - POST : suspicious UNION statement in data	5.0.0
SQL injection Prevention - POST : suspicious OR statement in data	5.0.0
SQL injection Prevention - POST : possible version probing in data	5.0.0

Risk level

High

Vulnerability First Public Report Date

2016-08-16

Target Type

Server

Possible exploit

Remote