<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=1462084720533760&amp;ev=PageView&amp;noscript=1">
Vulnerability Report

CVE-2020-22275 ER Forms WordPress Plugin CMDI

Virsec Security Research Lab Vulnerability Analysis

The Virsec Security Research Lab provides detailed analysis on recent and notable security vulnerabilities.

Vulnerability Summary

ER Forms WordPress Plugin 2.0.6 allows an attacker to submit an entry with malicious CSV commands via Export Section. Easy Registration Forms (ER Forms) WordPress Plugin 2.0.6 allows an attacker to submit an entry with malicious CSV commands (such as =cmd|'/C ping -t 127.0.0.1'!A0). After that, when the system administrator generates CSV output from the forms information, there is no check on these inputs and the codes are executable.

Watch the video to learn more about this and other important vulnerabilities.

CVSS Score

The CVSS Base Score is 8.8 (High)

Affected Version

WordPress Plugin 2.0.6

Vulnerability Attribution

Mohamad Pishdar -Web security specialist in Imam Khomeini International University Cert Center (cert.ikiu.ac.ir)-IRAN

Risk Impact

According to the vendor, Uploadboy.com is an easier way to share your files with your friends, family, and work colleagues. No reason to attach large files to emails and send them - Just upload to uploadboy.com and give the links to those you wish to share with, and they will have fast and easy access to your files. A successful exploitation of this vulnerability results in remote code execution. Public domain exploits are available here.

Virsec Security Platform (VSP) Support

The Virsec Security Platform (VSP)-Web can detect this attack as a Command Injection attack. VSP-Host monitors processes that are spawned which are not part of a set of whitelisted process. Any attempt to execute new command or unknown binary would be denied by VSP-Host’s Process and Script Monitoring capability.

Reference Links

Download the full vulnerability report to learn more about this and other important vulnerabilities.