.. / CVE-2021-32789

Exploit for WooCommerce Blocks 2.5 to 5.5 - Unauthenticated SQL Injection (CVE-2021-32789)

Description:

woocommerce-gutenberg-products-block is a feature plugin for WooCommerce Gutenberg Blocks. An SQL injection vulnerability impacts all WooCommerce sites running the WooCommerce Blocks feature plugin between version 2.5.0 and prior to version 2.5.16. Via a carefully crafted URL, an exploit can be executed against the wc/store/products/collection-data?calculate_attribute_counts[][taxonomy] endpoint that allows the execution of a read only sql query. There are patches for many versions of this package, starting with version 2.5.16. There are no known workarounds aside from upgrading.

Nuclei Template

View the template here CVE-2021-32789.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2021/CVE-2021-32789.yaml

References:

https://securitynews.sonicwall.com/xmlpost/wordpress-woocommerce-plugin-sql-injection/
https://wpscan.com/vulnerability/0f2089dc-9376-4d7d-95a2-25c99526804a
https://nvd.nist.gov/vuln/detail/CVE-2021-32789
https://viblo.asia/p/phan-tich-loi-unauthen-sql-injection-woocommerce-naQZRQyQKvx
https://woocommerce.com/posts/critical-vulnerability-detected-july-2021

.. / CVE-2021-32789 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for WooCommerce Blocks 2.5 to 5.5 - Unauthenticated SQL Injection (CVE-2021-32789)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2021-32789