CVE-2024-1698

CRITICAL EXPLOITED NUCLEI LAB

NotificationX < 2.8.3 - Unauthenticated SQL Injection via Type Parameter

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2024-1698 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 4 public exploits from researchers including kamranhasan, jesicatjan, Dhananjayasj. A Nuclei detection template is also available.

AI-analyzed exploit summary This repository contains a functional Python exploit for CVE-2024-1698, a SQL injection vulnerability in WordPress NotificationX plugin <= 2.8.2. The exploit uses time-based blind SQLi to extract admin credentials (username and password hash) from the wp_users table.

Description

The NotificationX – Best FOMO, Social Proof, WooCommerce Sales Popup & Notification Bar Plugin With Elementor plugin for WordPress is vulnerable to SQL Injection via the 'type' parameter in all versions up to, and including, 2.8.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.

Exploits (4)

nomisec WORKING POC 8 stars
by kamranhasan · remote
https://github.com/kamranhasan/CVE-2024-1698-Exploit

This repository contains a functional Python exploit for CVE-2024-1698, a SQL injection vulnerability in WordPress NotificationX plugin <= 2.8.2. The exploit uses time-based blind SQLi to extract admin credentials (username and password hash) from the wp_users table.

Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Moderate
Reliability
Reliable
Target: WordPress NotificationX plugin <= 2.8.2
No auth needed
Prerequisites: Target running WordPress with vulnerable NotificationX plugin · Network access to the target's NotificationX Analytics API endpoint
devstral-2 · analyzed Feb 19, 2026 Full analysis →
nomisec WORKING POC 1 stars
by jesicatjan · infoleak
https://github.com/jesicatjan/WordPress-NotificationX-CVE-2024-1698

This repository contains a functional exploit for CVE-2024-1698, a SQL injection vulnerability in WordPress NotificationX plugin. The exploit uses time-based blind SQLi to extract the admin password hash from the database.

Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Moderate
Reliability
Reliable
Target: WordPress NotificationX plugin version 2.8.2
No auth needed
Prerequisites: Target must have WordPress with vulnerable NotificationX plugin installed · Network access to the WordPress site
devstral-2 · analyzed Feb 19, 2026 Full analysis →
nomisec WORKING POC
by Dhananjayasj · infoleak
https://github.com/Dhananjayasj/CVE-2024-1698-NotificationX-WordPress-Plugin-SQL-Injection-to-Admin-Credential-Extraction

The repository contains a functional Python exploit for CVE-2024-1698, demonstrating a time-based blind SQL injection in the NotificationX WordPress plugin. The exploit extracts admin credentials by leveraging improper input sanitization in the REST API endpoint.

Classification
Working Poc 100%
Attack Type
Sqli
Complexity
Moderate
Reliability
Reliable
Target: NotificationX WordPress Plugin ≤ 2.8.2
No auth needed
Prerequisites: Python 3.6+ · requests library · target WordPress with NotificationX ≤ 2.8.2
devstral-2 · analyzed Jun 04, 2026 Full analysis →
nomisec WORKING POC
by shanglyu · infoleak
https://github.com/shanglyu/CVE-2024-1698

This repository contains a functional exploit for CVE-2024-1698, targeting a SQL injection vulnerability in the NotificationX WordPress plugin (version 2.8.2). The exploit uses time-based blind SQL injection to extract user credentials from the WordPress database.

Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Moderate
Reliability
Reliable
Target: NotificationX WordPress plugin v2.8.2
No auth needed
Prerequisites: WordPress site with vulnerable NotificationX plugin installed · Network access to the target site
devstral-2 · analyzed Feb 19, 2026 Full analysis →

Nuclei Templates (1)

NotificationX <= 2.8.2 - SQL Injection
CRITICALVERIFIEDby DhiyaneshDk
FOFA: body="/wp-content/plugins/notificationx"

References (4)

Core 4

Scores

CVSS v3 9.8
EPSS 0.7759
EPSS Percentile 99.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact total

Lab Environment

COMMUNITY
Community Lab
docker pull wordpress:apache
+1 more repos

Details

VulnCheck KEV 2024-03-29
CWE
CWE-89
Status published
Products (2)
wpdeveloper/notificationx < 2.8.3
wpdevteam/NotificationX – FOMO, Live Sales Notification, WooCommerce Sales Popup, GDPR, Social Proof, Announcement Banner & Floating Notification Bar < 2.8.2
Published Feb 27, 2024
Tracked Since Feb 18, 2026