CVE-2022-0867 — AI Deep Analysis Summary

🚨 **Essence**: SQL Injection (SQLi) in Pricing Table Plugin. <br>💥 **Consequences**: Attackers can steal sensitive data, modify database records, or execute unauthorized admin operations via AJAX requests.

🛡️ **Root Cause**: **CWE-89** (SQL Injection). <br>🔍 **Flaw**: Failure to properly sanitize and escape user-supplied **POST data** before inserting it into SQL statements.

📦 **Affected**: WordPress Plugin **Pricing Table** (also referred to as ARPrice). <br>📉 **Version**: Versions **prior to 3.6.1**.

🕵️ **Hackers Can**: Obtain sensitive information, modify existing data, and execute unauthorized administrative operations within the context of the affected WordPress site.

⚡ **Threshold**: **Low**. Exploitation is triggered via **AJAX actions** using POST data. No complex authentication bypass is mentioned, making it relatively accessible.

📜 **Public Exp?**: **Yes**. Proof of Concept (PoC) is available via **Nuclei templates** on GitHub (projectdiscovery/nuclei-templates).

🔎 **Self-Check**: Scan for the **Pricing Table** plugin version < 3.6.1. Use automated scanners like **Nuclei** with the specific CVE-2022-0867 template to detect the SQLi vector.

🛠️ **Fix**: Upgrade the **Pricing Table** plugin to version **3.6.1** or later. This version addresses the sanitization and escaping issues.

🚧 **No Patch Workaround**: If upgrading isn't immediate, restrict **POST** access to the plugin's AJAX endpoints via WAF rules. However, patching is the only true fix for input validation flaws.

🔥 **Urgency**: **High**. SQLi allows full database compromise. With public PoCs available, immediate patching is recommended to prevent data theft or site takeover.