CVE-2024-6926 Scanner

The Viral Signup plugin is used in WordPress environments to create opt-in forms with viral referral sharing capabilities. It allows site administrators to gather user signups and expand their reach through referral marketing. This plugin is popular among website owners looking to increase user engagement. It’s typically used by marketers, bloggers, and businesses to enhance their mailing lists. Viral Signup is commonly deployed in small to medium-sized WordPress sites to encourage growth through viral marketing techniques.

This SQL Injection vulnerability in Viral Signup allows unauthenticated attackers to manipulate SQL queries by sending crafted input to the plugin. The issue stems from insufficient input validation on user-supplied parameters. Attackers can exploit this flaw to extract sensitive information, such as credentials, from the database. The vulnerability affects all versions up to 2.1 of the plugin.

The vulnerability resides in the handling of the idsignup parameter, which is not properly sanitized before being included in SQL queries. Specifically, the plugin does not adequately escape this user input, allowing attackers to inject arbitrary SQL commands. By targeting the /wp-admin/admin-ajax.php endpoint, an attacker can append additional SQL statements through the vulnerable parameter. The vulnerability can be triggered via POST requests, enabling attackers to exfiltrate sensitive data from the database or alter its contents.

Exploiting this vulnerability could lead to database compromise, resulting in the disclosure of sensitive information such as user credentials, emails, and personal data. An attacker could also modify or delete database records, potentially causing significant disruption to the affected website. If successful, this attack may lead to a complete site compromise, giving the attacker unauthorized administrative access.

By using the S4E platform, you can easily scan your WordPress environment for critical vulnerabilities like SQL Injection. Protect your website from cyber threats, monitor your security posture, and receive detailed reports on potential risks. With real-time updates and proactive vulnerability checks, our platform ensures your digital assets remain safe and secure. Sign up now and take control of your security with continuous monitoring and comprehensive threat intelligence.

References:

• https://www.usom.gov.tr/bildirim/tr-24-1387
• https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/viral-signup/viral-signup-21-unauthenticated-sql-injection
• https://wpscan.com/vulnerability/9ce96ce5-fcf0-4d7a-b562-f63ea3418d93/
• https://nvd.nist.gov/vuln/detail/CVE-2024-6926