CVE-2016-1209

CRITICAL

Ninja Forms <2.9.42.1 - Code Injection

Title source: llm

Description

The Ninja Forms plugin before 2.9.42.1 for WordPress allows remote attackers to conduct PHP object injection attacks via crafted serialized values in a POST request.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubywebappsmultiple

https://www.exploit-db.com/exploits/41692

View Code ZIP pw:eip

metasploit WORKING POC EXCELLENT

by James Golovich, rastating · rubypocphp

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/wp_ninja_forms_unauthenticated_file_upload.rb

View Code ZIP pw:eip

References (8)

[Various Sources] https://ninjaforms.com/important-security-update-always-hurt-ones-love/

[Vendor Advisory] http://jvn.jp/en/jp/JVN44657371/index.html

[Vendor Advisory] http://jvndb.jvn.jp/jvndb/JVNDB-2016-000064

[Exploit] http://packetstormsecurity.com/files/137211/WordPress-Ninja-Forms-Unauthenticated-File-Upload.html

[Various Sources] http://www.pritect.net/blog/ninja-forms-2-9-42-critical-security-vulnerabilities

[Exploit] http://www.rapid7.com/db/modules/exploit/unix/webapp/wp_ninja_forms_unauthenticated_file_upload

[Product] https://wordpress.org/plugins/ninja-forms/changelog/

[Third Party Advisory] https://wpvulndb.com/vulnerabilities/8485

Scores

CVSS v3 9.8

EPSS 0.8058

EPSS Percentile 99.1%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-20

Status published

Products (1)

ninjaforms/ninja_forms < 2.9.42

Published May 14, 2016

Tracked Since Feb 18, 2026