CVE-2015-9352 in wp-polls Plugin
Summary
by MITRE
The wp-polls plugin before 2.72 for WordPress has SQL injection.
VulDB is the best source for vulnerability data and more expert information about this specific topic.
Analysis
by VulDB Data Team • 12/04/2023
The wp-polls plugin vulnerability represents a critical security flaw in the widely used WordPress polling system that affected versions prior to 2.72. This vulnerability resides within the plugin's handling of user input during poll data processing, creating an avenue for malicious actors to execute unauthorized database operations. The issue manifests when the plugin fails to properly sanitize or escape user-supplied parameters before incorporating them into SQL query structures, thereby exposing the underlying database to potential compromise.
This SQL injection vulnerability stems from inadequate input validation and parameter sanitization within the plugin's core functionality. The flaw allows attackers to manipulate the plugin's database queries by injecting malicious SQL code through user-controllable parameters. When the wp-polls plugin processes poll data submissions or displays poll results, it constructs SQL statements that include unsanitized user input directly into the query execution flow. The vulnerability specifically affects how the plugin handles poll identification numbers and user voting data, creating opportunities for attackers to extract, modify, or delete database records without proper authorization.
The operational impact of this vulnerability extends beyond simple data theft, as it provides attackers with the capability to escalate privileges within the WordPress environment. Successful exploitation could enable attackers to access sensitive user information, manipulate poll results to influence outcomes, or even gain access to other WordPress plugin data. The vulnerability's severity is compounded by the widespread adoption of the wp-polls plugin, meaning that compromised installations could be leveraged to target multiple websites simultaneously. Additionally, the SQL injection could potentially be chained with other vulnerabilities to achieve more extensive system compromise, making it a particularly dangerous flaw in web application security.
Security practitioners should prioritize immediate remediation through plugin updates to version 2.72 or later, which implements proper input sanitization and parameterized query construction. Organizations should also implement network-level protections such as web application firewalls to detect and block malicious SQL injection attempts. The vulnerability aligns with CWE-89, which classifies SQL injection as a common weakness in application security, and represents a technique that attackers commonly employ to bypass authentication mechanisms and access sensitive data. According to ATT&CK framework categorization, this vulnerability falls under the T1071.004 technique for application layer protocol and T1213.002 for data from information repositories, highlighting its potential for data exfiltration and unauthorized access to stored information. The remediation process should include thorough testing of the updated plugin to ensure compatibility with existing poll configurations and user data.