Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2021-32789 PoC — Arbitrary SQL (SQL injection) possible via the Store API component.

Source
https://github.com/DonVorrin/CVE-2021-32789
Associated Vulnerability
Title:Arbitrary SQL (SQL injection) possible via the Store API component. (CVE-2021-32789)
Description:woocommerce-gutenberg-products-block is a feature plugin for WooCommerce Gutenberg Blocks. An SQL injection vulnerability impacts all WooCommerce sites running the WooCommerce Blocks feature plugin between version 2.5.0 and prior to version 2.5.16. Via a carefully crafted URL, an exploit can be executed against the `wc/store/products/collection-data?calculate_attribute_counts[][taxonomy]` endpoint that allows the execution of a read only sql query. There are patches for many versions of this package, starting with version 2.5.16. There are no known workarounds aside from upgrading.
Description
Authenticated Blind SQL Injection. Wordpress woocommerce plugin versions >= 2.5.0
Readme
# CVE-2021-32789
Authenticated Blind SQL Injection. Wordpress woocommerce plugin versions >= 2.5.0

# Install
```
git clone https://github.com/DonVorrin/CVE-2021-32789.git
cd CVE-2021-32789
sudo pip install -r requirements.txt
```

# Exploit
```
python3 exploit.py
Enter URL: (Example: http://exploit.cve/)

Enter number:
  1 - Output tables                               |
  2 - Output tables + columns                     |
  3 - Output text (need use number tabels)      <- 

The output of a single line from the database is done for convenience.
I recommend to use Web version, generate payload independently.
(See ------FOR BROWSER URL------)
```
File Snapshot

 [4.0K]  /data/pocs/5ad033fc2c98d89d386610ccc126acd04c96966d
├── [4.3K]  exploit.py
├── [ 652]  README.md
└── [   8]  requirements.txt

0 directories, 3 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →