CVE-2024-6205

CRITICAL EXPLOITED NUCLEI

PayPlus Payment Gateway <6.6.9 - SQL Injection

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2024-6205 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including j3r1ch0123. A Nuclei detection template is also available.

AI-analyzed exploit summary This is a Python-based PoC for CVE-2024-6205, a SQL injection vulnerability in a WordPress plugin. It exploits a time-based blind SQLi by injecting a sleep payload and measuring response time.

Description

The PayPlus Payment Gateway WordPress plugin before 6.6.9 does not properly sanitise and escape a parameter before using it in a SQL statement via a WooCommerce API route available to unauthenticated users, leading to an SQL injection vulnerability.

Exploits (1)

nomisec WORKING POC 1 stars
by j3r1ch0123 · infoleak
https://github.com/j3r1ch0123/CVE-2024-6205

This is a Python-based PoC for CVE-2024-6205, a SQL injection vulnerability in a WordPress plugin. It exploits a time-based blind SQLi by injecting a sleep payload and measuring response time.

Classification
Working Poc 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Reliable
Target: WordPress plugin (specific plugin not named in code)
No auth needed
Prerequisites: Target URL with vulnerable WordPress plugin
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Nuclei Templates (1)

PayPlus Payment Gateway < 6.6.9 - SQL Injection
CRITICALby s4e-io

References (1)

Core 1
Core References
Exploit, Third Party Advisory exploit vdb-entry technical-description
https://wpscan.com/vulnerability/7e2c5032-2917-418c-aee3-092bdb78a087/

Scores

CVSS v3 9.8
EPSS 0.0417
EPSS Percentile 89.6%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact total

Details

VulnCheck KEV 2025-01-22
CWE
CWE-89
Status published
Products (1)
payplus/payplus_payment_gateway < 6.6.9
Published Jul 19, 2024
Tracked Since Feb 18, 2026