WordPress AdRotate Plugin 'clicktracker.php' SQL Injection Vulnerability Network Vulnerability

Summary

This host is installed with WordPress AdRotate Plugin and is prone to sql injection vulnerability.

Impact

Successful exploitation will allow attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data.

Solution

Upgrade AdRotate Pro to version 3.9.6 or higher and AdRotate Free to version 3.9.5 or higher, For Updates refer to http://www.adrotateplugin.com

Insight

Flaw is due to the library/clicktracker.php script not properly sanitizing user-supplied input to the 'track' parameter.

Affected

Wordpress AdRotate Pro plugin version 3.9 through 3.9.5 and AdRotate Free plugin version 3.9 through 3.9.4

Detection

Send a crafted exploit string via HTTP GET request and check whether it is possible to execute sql query or not.

References

http://packetstormsecurity.com/files/125330
http://secunia.com/advisories/57079
http://www.exploit-db.com/exploits/31834
http://www.osvdb.com/103578
https://www.htbridge.com/advisory/HTB23201

Updated on 2015-03-25

Severity

Classification

CVE CVE-2014-1854
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

ALCASAR Remote Code Execution Vulnerability
appRain CMF SQL Injection And Cross Site Scripting Vulnerabilities
Arkeia Appliance Multiple Vulnerabilities
Atutor AContent Multiple SQL Injection and XSS Vulnerabilities
AWCM CMS Multiple Remote File Include Vulnerabilities

Take action and discover your vulnerabilities