CVE-2025-24773 — AI Deep Analysis Summary

🚨 **Essence**: SQL Injection (SQLi) in WPCRM plugin. 💥 **Consequences**: Attackers can manipulate database queries, leading to data theft or site compromise. It's a critical security flaw in the CRM module.

🛡️ **Root Cause**: **CWE-89** (Improper Neutralization of Special Elements used in an SQL Command). The plugin fails to sanitize user inputs before executing SQL queries, allowing malicious code injection.

📦 **Affected**: **WPCRM - CRM for Contact form CF7 & WooCommerce** by **mojoomla**. Specifically versions **3.2.0 and earlier**. If you use this plugin, you are at risk.

💀 **Hacker Capabilities**: With **High Confidentiality (C:H)** impact, attackers can read sensitive database contents.…

🔓 **Exploitation Threshold**: **LOW**. CVSS indicates **AV:N** (Network), **AC:L** (Low Complexity), **PR:N** (No Privileges Required), **UI:N** (No User Interaction). It is easily exploitable remotely without login.

🕵️ **Public Exploit**: The provided data lists **no specific PoC (Proof of Concept)** code in the `pocs` array. However, references to Patchstack exist.…

🔍 **Self-Check**: Scan your WordPress site for the **WPCRM** plugin. Check the version number in your dashboard. If it is **≤ 3.2.0**, you are vulnerable.…

🔧 **Official Fix**: The vendor **mojoomla** is responsible for the fix. The references point to Patchstack advisories. You should check the official WordPress plugin repository or Patchstack for an update **> 3.2.0**.

🚧 **No Patch Workaround**: If no update is available, **deactivate and delete** the WPCRM plugin immediately.…

⚡ **Urgency**: **HIGH**. CVSS Score implies significant impact (S:C, C:H). Since it requires **No Authentication** and is **Network-accessible**, patch immediately or disable the plugin to prevent data breaches.