Menu

CVE-2024-11269 β€” SQL Injection

WordPress Plugin AHAthat β€” Discovered by Seckhmet

Vulnerability Information

CVE IDCVE-2024-11269
TypeSQL Injection (SQLi)
Affected ComponentWordPress Plugin AHAthat
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
CVSS Score6.5 β€” Medium
Discovered bySeckhmet

Description

A SQL Injection was discovered in the WordPress plugin AHAthat. Unlike other CVEs from this plugin, this one is exploitable with low user privileges (PR:L), significantly broadening the attack surface.

Any registered WordPress user can potentially exfiltrate confidential data from the database, including personal data, hashed credentials, or sensitive business information.

CVSS Analysis

  • AV:N β€” Network vector: remotely exploitable
  • AC:L β€” Low complexity
  • PR:L β€” Low privileges sufficient (subscriber, author, etc.)
  • UI:N β€” No user interaction required
  • C:H β€” Critical impact on confidentiality

Recommendations

Update the AHAthat plugin immediately. Limit the number of active user accounts on your WordPress installations. Monitor for abnormal SQL queries via continuous monitoring.