CVE-2023-0037 — AI Deep Analysis Summary

🚨 **Essence**: SQL Injection (SQLi) in WordPress plugin **10WebMapBuilder**. <br>⚠️ **Consequences**: Attackers can manipulate SQL queries, leading to data theft, modification, or deletion.…

🛡️ **Root Cause**: Improper sanitization and escaping of user-supplied parameters before SQL execution. <br>🔍 **CWE**: Not explicitly listed in data, but classic **SQL Injection** flaw (CWE-89).…

📦 **Product**: 10Web Map Builder for Google Maps (WordPress Plugin). <br>📉 **Affected Versions**: **< 1.0.73** (i.e., 1.0.72 and earlier). <br>🌐 **Platform**: WordPress sites using this specific plugin.

💀 **Attacker Actions**: <br>1. **Extract Data**: Read sensitive database contents (users, configs, other site data). <br>2. **Modify Data**: Change or delete records. <br>3.…

📉 **Threshold: LOW**. <br>🔑 **Auth**: **Unauthenticated** access required. <br>⚙️ **Config**: Exploits via AJAX actions exposed to the public. <br>🎯 **Ease**: High. No credentials needed to trigger the injection.

📜 **Public Exploit**: Yes. <br>🔗 **PoC**: Available via **ProjectDiscovery Nuclei Templates** (CVE-2023-0037.yaml). <br>🌍 **Wild Exploitation**: Likely, given the unauthenticated nature and public PoC availability.

🔍 **Self-Check**: <br>1. Scan for **10Web Map Builder** plugin version < 1.0.73. <br>2. Use **Nuclei** with the specific CVE template. <br>3.…

✅ **Fixed**: Yes. <br>🔧 **Patch**: Upgrade to version **1.0.73** or later. <br>📝 **Source**: Vendor release notes and WPScan vulnerability entry confirm the fix in 1.0.73.

🚧 **Workaround (If no patch)**: <br>1. **Disable/Deactivate** the 10Web Map Builder plugin immediately. <br>2. **Restrict Access**: Block AJAX endpoints via WAF if possible. <br>3.…

🔥 **Priority: HIGH**. <br>⏱️ **Urgency**: Immediate action required. <br>📢 **Reason**: Unauthenticated SQLi allows full database compromise. Public PoC exists. Low barrier to entry for attackers.