CVE-2024-3552: Web Directory Free < 1.7.0 - Unauthenticated SQL Injection

Description

The Web Directory Free WordPress plugin before 1.7.0 does not sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection with different techniques like UNION, Time-Based and Error-Based.

Classification

CVE ID: CVE-2024-3552

Problem Types

CWE-89 SQL Injection

Affected Products

Vendor: Unknown

Product: Web Directory Free

Nuclei Template

http/cves/2024/CVE-2024-3552.yaml

Exploit Prediction Scoring System (EPSS)

EPSS Score: 93.2% (probability of being exploited)

EPSS Percentile: 99.78% (scored less or equal to compared to others)

EPSS Date: 2025-04-23 (when was this score calculated)

Stakeholder-Specific Vulnerability Categorization (SSVC)

SSVC Exploitation: poc

SSVC Technical Impact: total

SSVC Automatable: true

References

https://nvd.nist.gov/vuln/detail/CVE-2024-3552
https://wpscan.com/vulnerability/34b03ee4-de81-4fec-9f3d-e1bd5b94d136/

Timeline

2025-03-25 15:40:15 UTC
CVE

Web Directory Free < 1.7.0 - Unauthenticated SQL Injection