CVE-2020-22275 ER Forms WordPress Plugin CMDI
Virsec Security Research Lab Vulnerability Analysis
The Virsec Security Research Lab provides detailed analysis on recent and notable security vulnerabilities.
ER Forms WordPress Plugin 2.0.6 allows an attacker to submit an entry with malicious CSV commands via Export Section. Easy Registration Forms (ER Forms) WordPress Plugin 2.0.6 allows an attacker to submit an entry with malicious CSV commands (such as =cmd|'/C ping -t 127.0.0.1'!A0). After that, when the system administrator generates CSV output from the forms information, there is no check on these inputs and the codes are executable.
Watch the video to learn more about this and other important vulnerabilities.
The CVSS Base Score is 8.8 (High)
WordPress Plugin 2.0.6
Mohamad Pishdar -Web security specialist in Imam Khomeini International University Cert Center (cert.ikiu.ac.ir)-IRAN
According to the vendor, Uploadboy.com is an easier way to share your files with your friends, family, and work colleagues. No reason to attach large files to emails and send them - Just upload to uploadboy.com and give the links to those you wish to share with, and they will have fast and easy access to your files. A successful exploitation of this vulnerability results in remote code execution. Public domain exploits are available here.
Virsec Security Platform (VSP) Support
The Virsec Security Platform (VSP)-Web can detect this attack as a Command Injection attack. VSP-Host monitors processes that are spawned which are not part of a set of whitelisted process. Any attempt to execute new command or unknown binary would be denied by VSP-Host’s Process and Script Monitoring capability.
Download the full vulnerability report to learn more about this and other important vulnerabilities.