Arbitrary SQL (SQL injection) possible via the Store API component.
Description
woocommerce-gutenberg-products-block is a feature plugin for WooCommerce Gutenberg Blocks. An SQL injection vulnerability impacts all WooCommerce sites running the WooCommerce Blocks feature plugin between version 2.5.0 and prior to version 2.5.16. Via a carefully crafted URL, an exploit can be executed against the wc/store/products/collection-data?calculate_attribute_counts[][taxonomy] endpoint that allows the execution of a read only sql query. There are patches for many versions of this package, starting with version 2.5.16. There are no known workarounds aside from upgrading.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2>=2.5.0, <2.5.16+ 1 more
- (no CPE)range: >=2.5.0, <2.5.16
- (no CPE)range: > 2.5.0, < 2.5.16
Patches
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5- github.com/woocommerce/woocommerce-gutenberg-products-block-ghsa-6hq4-w6wv-8wrp/pull/1mitrex_refsource_MISC
- github.com/woocommerce/woocommerce-gutenberg-products-block/security/advisories/GHSA-6hq4-w6wv-8wrpmitrex_refsource_CONFIRM
- hackerone.com/reports/1260787mitrex_refsource_MISC
- woocommerce.com/posts/critical-vulnerability-detected-july-2021/mitrex_refsource_MISC
- wooengineering.wordpress.com/2021/07/14/incident-report-sql-injection-via-store-api/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.