CVE-2024-8522 Scanner

LearnPress is a WordPress plugin designed for online learning platforms, widely used by educational websites and content creators to offer courses. Built by ThimPress, it provides a comprehensive LMS experience, enabling course creation, management, and user engagement. Due to its popularity in the educational sector, LearnPress has become a critical tool for remote learning and online course distribution. The plugin supports multiple payment gateways and integrations, making it suitable for both small and large educational websites. It's a popular choice for building interactive, accessible e-learning environments.

This SQL Injection vulnerability in LearnPress allows unauthenticated attackers to exploit a parameter in the API endpoint. By injecting arbitrary SQL queries through the 'c_only_fields' parameter, attackers can manipulate database requests. This vulnerability can result in unauthorized data retrieval, potentially exposing sensitive information. The flaw arises from a lack of input sanitization on specific fields in the API.

The vulnerability is located in the /wp-json/learnpress/v1/courses REST API endpoint. Specifically, the 'c_only_fields' parameter does not sanitize user input, allowing crafted SQL injections to be executed. Attackers can manipulate this parameter by inserting additional SQL queries into the existing database request. This issue occurs due to improper escaping and insufficient query preparation, exposing the database to potentially harmful SQL commands. Successful exploitation allows retrieval of sensitive information or unauthorized data access within the database.

If exploited, this vulnerability could allow attackers to view sensitive data such as usernames, passwords, and other confidential information from the database. Unauthorized access could compromise user accounts and grant elevated privileges to attackers. This may also lead to data manipulation, where attackers can alter, delete, or corrupt existing information. In severe cases, this exposure could compromise the overall security of the website, allowing for further attacks.

Our platform provides a proactive approach to identify and manage vulnerabilities like the SQL Injection issue in LearnPress. By regularly scanning your digital assets, you can detect vulnerabilities early, safeguard sensitive data, and maintain robust cybersecurity defenses. S4E's continuous threat exposure management ensures you’re always up-to-date, reducing the risk of unauthorized access or data breaches. Join us to leverage our comprehensive security checks and maintain peace of mind with thorough, automated scanning.

References:

• https://github.com/advisories/GHSA-3w3r-r6g6-w8x5
• https://nvd.nist.gov/vuln/detail/CVE-2024-8522