CVE-2023-28662 — AI Deep Analysis Summary

🚨 **Essence**: Unauthenticated SQL Injection in 'Gift Cards' plugin. 💥 **Consequences**: Attackers can manipulate database queries, leading to data theft or site compromise.

🛡️ **Root Cause**: Improper sanitization of the `template` parameter. 📍 **Location**: Inside `wpgv_doajax_voucher_pdf_save_func` action. ⚠️ **Flaw**: Direct input into SQL query without validation.

📦 **Product**: WordPress Plugin Gift Cards (Gift Vouchers and Packages). 📉 **Affected Versions**: Version **4.3.1** and earlier. 🌐 **Platform**: WordPress sites running this specific plugin.

🕵️ **Hackers Can**: Execute arbitrary SQL commands. 💾 **Impact**: Extract sensitive user data, modify database records, or potentially escalate privileges to full server control.

🔓 **Threshold**: **LOW**. 🚫 **Auth Required**: None (Unauthenticated). ⚙️ **Config**: Exploitable via the AJAX action endpoint directly. Easy to trigger.

🔍 **Public Exp?**: Yes. 📜 **PoC**: Available via ProjectDiscovery Nuclei templates. 🌍 **Wild Exploitation**: High risk due to automated scanning tools utilizing this template.

🔎 **Self-Check**: Scan for the plugin version. 🧪 **Test**: Use Nuclei template `CVE-2023-28662.yaml`. 📊 **Indicator**: Look for SQL error responses in the `wpgv_doajax_voucher_pdf_save_func` AJAX call.

🩹 **Fix**: Update the plugin to a version **> 4.3.1**. ✅ **Official Patch**: Vendor released a fix. 🔄 **Action**: Immediate upgrade recommended.

🚧 **No Patch?**: Disable the plugin immediately. 🛑 **Mitigation**: Restrict access to `wp-admin` and AJAX endpoints via WAF rules blocking SQL injection patterns in `template` param.

⚡ **Urgency**: **HIGH**. 🚨 **Priority**: Critical. Unauthenticated SQLi is a severe threat. Patch immediately to prevent data breaches.