CNVD-2015-02973 Scanner

The Contus Video Gallery is a WordPress plugin widely used by content creators and web developers to manage and showcase videos on WordPress-powered websites. Consisting of robust features for video display, this plugin aids users in keeping multimedia content well-organized and visually appealing. Webmasters and enterprises favor it for its integration capabilities and ease of use in media management. Developed in PHP, WordPress plugins like Contus Video Gallery are critical components for expanding website functionality in various industries. As a popular choice for video gallery needs, this plugin is installed on numerous WordPress sites globally, providing customized media solutions.

The vulnerability identified within Contus Video Gallery versions 2.7 and earlier is an SQL Injection flaw. This enables attackers to inject arbitrary SQL commands through improper filtration of the "vid" GET parameter in "wp-admin/admin-ajax.php". The result is unauthorized SQL command execution, leading to potential data breaches or manipulation of database queries. Such vulnerabilities pose significant security risks, as they can compromise data integrity and expose sensitive information. The need for adequate input validation and secure coding practices is underscored by this vulnerability.

The technical aspect of the SQL Injection vulnerability in Contus Video Gallery arises from inadequate input filtering of the "vid" parameter on requests to "admin-ajax.php". Attackers can exploit this by inserting crafted SQL statements directly into the GET parameter, resulting in unauthorized access to the database. The endpoint is particularly vulnerable as it processes user input without proper sanitization. Consequently, SQL queries can be manipulated, allowing attackers to extract, modify, or delete database content. Effective parameterization and query preparation are essential to mitigate such vulnerabilities.

When exploited, the SQL Injection vulnerability could allow attackers to perform unauthorized database operations. Such exploits may lead to the exposure of confidential information, unauthorized data alterations, and overall compromise of the site's database. In severe cases, attackers might gain administrative control, leading to further exploitation or defacement of the website. It is critical for website administrators to apply security patches and adopt secure coding practices to prevent potential damages caused by such vulnerabilities.

REFERENCES

• https://wordpress.org/plugins/contus-video-gallery/changelog/