CVE-2017-14723

moderate-risk

Published 2017-09-23

Before version 4.8.2, WordPress mishandled % characters and additional placeholder values in $wpdb->prepare, and thus did not properly address the possibility of plugins and themes enabling SQL injection attacks.

Do I need to act?

10.4% chance of exploitation in next 30 days

EPSS score — higher than 90% of all CVEs

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 9.8/10 Critical

NETWORK / LOW complexity

Affected Products (1)

Wordpress

Affected Vendors

Wordpress

References (20)

Third Party Advisory http://www.securityfocus.com/bid/100912

http://www.securitytracker.com/id/1039553

Patch https://core.trac.wordpress.org/changeset/41470

Patch https://core.trac.wordpress.org/changeset/41496

Issue Tracking https://github.com/WordPress/WordPress/commit/70b21279098fc973eae803693c0705a548...

Issue Tracking https://github.com/WordPress/WordPress/commit/fc930d3daed1c3acef010d04acc2c5de93...

Exploit https://medium.com/websec/wordpress-sqli-bbb2afcc8e94

Exploit https://medium.com/websec/wordpress-sqli-poc-f1827c20bf8e

Patch https://wordpress.org/news/2017/09/wordpress-4-8-2-security-and-maintenance-rele...

https://www.debian.org/security/2017/dsa-3997