The WP CTA - Sticky CTA Builder, Generate Leads, Promote Sales plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'fildname' parameter in versions up to and including 2.2.2. This vulnerability is due to insufficient escaping of user-supplied column names and lack of preparation in database queries. Unauthenticated attackers can exploit this by injecting arbitrary SQL queries to extract sensitive information, including administrator password hashes, from the database.
WP CTA – Sticky CTA Builder, Generate Leads, Promote Sales plugin <= 2.2.2
wordpress
plugin
sql-injection
time-based-blind
unauthenticated
web-vulnerability
1r
2t
1c