Description
The WP All Export Pro WordPress plugin before 1.7.9 uses the contents of the cc_sql POST parameter directly as a database query, allowing users which has been given permission to run exports to execute arbitrary SQL statements, leading to a SQL Injection vulnerability. By default only users with the Administrator role can perform exports, but this can be delegated to lower privileged users as well.
References (1)
Core 1
Core References
Exploit, Third Party Advisory
https://wpscan.com/vulnerability/10742154-368a-40be-a67d-80ea848493a0
Scores
CVSS v3
8.8
EPSS
0.0095
EPSS Percentile
56.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
total
Details
CWE
CWE-89
Status
published
Products (1)
soflyy/wp_all_export
< 1.7.9
Published
Oct 25, 2022
Tracked Since
Feb 18, 2026