Security Bloggers Network 

CVE-2020-22275: ER Forms WordPress Plugin CMDI

by Satya Gupta on November 23, 2020

Virsec Security Research Lab Vulnerability Report

The Virsec Security Research Lab, helmed by Virsec CTO, Satya Gupta, provides timely, relevant analysis about prevalent security vulnerabilities.

1.1        Vulnerability Summary

ER Forms WordPress Plugin 2.0.6 allows an attacker to submit an entry with malicious CSV commands via Export Section. Easy Registration Forms (ER Forms) WordPress Plugin 2.0.6 allows an attacker to submit an entry with malicious CSV commands (such as =cmd|’/C ping -t 127.0.0.1′!A0). After that, when the system administrator generates CSV output from the forms information, there is no check on these inputs and the codes are executable.

Watch the video to learn more about this and other important vulnerabilities.

1.2        CVSS Score

The CVSS Base Score is 8.8 (High)

1.3        Affected Version

WordPress Plugin 2.0.6

1.4        Vulnerability Attribution

Mohamad Pishdar -Web security specialist in Imam Khomeini International University Cert Center (cert.ikiu.ac.ir)-IRAN

1.5        Risk Impact

According to the vendor, Uploadboy.com is an easier way to share your files with your friends, family, and work colleagues. No reason to attach large files to emails and send them – Just upload to uploadboy.com and give the links to those you wish to share with, and they will have fast and easy access to your files. A successful exploitation of this vulnerability results in remote code execution. Public domain exploits are available here.

1.6        Virsec Security Platform (VSP) Support:

The Virsec Security Platform (VSP)-Web can detect this attack as a Command Injection attack. VSP-Host monitors processes that are spawned which are not part of a set of whitelisted process. Any attempt to execute new command or unknown binary would be denied by VSP-Host’s Process and Script Monitoring capability.

1.7        Reference Links:

Download the full vulnerability report to learn more about this and other important vulnerabilities.

The post CVE-2020-22275: ER Forms WordPress Plugin CMDI appeared first on Virsec Systems.


Recent Articles By Author
More from Satya Gupta

*** This is a Security Bloggers Network syndicated blog from Blog – Virsec Systems authored by Satya Gupta. Read the original post at: https://virsec.com/cve-2020-22275-er-forms-wordpress-plugin-cmdi/

Satya Gupta 0 Comments ,