CVE-2024-12312
📋 TL;DR
The Print Science Designer WordPress plugin has a PHP object injection vulnerability that allows unauthenticated attackers to inject malicious PHP objects via cookie manipulation. This affects all WordPress sites using the plugin version 1.3.152 or earlier. While no direct exploit chain exists in the plugin itself, if other vulnerable plugins/themes are installed, attackers could potentially delete files, steal data, or execute arbitrary code.
💻 Affected Systems
- Print Science Designer WordPress Plugin
⚠️ Manual Verification Required
This CVE does not have specific version information in our database, so automatic vulnerability detection cannot determine if your system is affected.
Why? The CVE database entry doesn't specify which versions are vulnerable (no version ranges provided by the vendor/NVD).
🔒 Custom verification scripts are available for registered users. Sign up free to download automated test scripts.
- Review the CVE details at NVD
- Check vendor security advisories for your specific version
- Test if the vulnerability is exploitable in your environment
- Consider updating to the latest version as a precaution
⚠️ Risk & Real-World Impact
Worst Case
Remote code execution leading to complete site compromise, data theft, and server takeover if a suitable POP chain exists from other installed components.
Likely Case
Denial of service through file deletion or data corruption, with potential for information disclosure if other vulnerable components are present.
If Mitigated
Limited impact with only denial of service possible if no suitable POP chains exist in the environment.
🎯 Exploit Status
Exploitation requires finding suitable POP chains in other installed components. No known direct exploit chain exists in the vulnerable plugin alone.
🛠️ Fix & Mitigation
✅ Official Fix
Patch Version: 1.3.153
Vendor Advisory: https://plugins.trac.wordpress.org/browser/print-science-designer/tags/1.3.153/includes/saved-projects.php#L120
Restart Required: No
Instructions:
1. Log into WordPress admin panel. 2. Navigate to Plugins → Installed Plugins. 3. Find Print Science Designer and click 'Update Now'. 4. Verify version shows 1.3.153 or higher.
🔧 Temporary Workarounds
Disable Plugin
allTemporarily deactivate the Print Science Designer plugin until patched
wp plugin deactivate print-science-designer
Web Application Firewall Rule
allBlock requests containing 'designer-saved-projects' cookie
Modify WAF rules to block: Cookie contains 'designer-saved-projects'
🧯 If You Can't Patch
- Deactivate the Print Science Designer plugin immediately
- Implement strict WAF rules to block manipulation of 'designer-saved-projects' cookie
🔍 How to Verify
Check if Vulnerable:
Check WordPress admin → Plugins → Print Science Designer → Version. If version is 1.3.152 or lower, you are vulnerable.Check Version:
wp plugin get print-science-designer --field=versionVerify Fix Applied:
After updating, verify version shows 1.3.153 or higher in WordPress admin panel.📡 Detection & Monitoring
Log Indicators:
- Unusual POST requests to WordPress admin-ajax.php with designer-saved-projects cookie
- PHP errors related to unserialize() or object injection
Network Indicators:
- HTTP requests with manipulated designer-saved-projects cookie values
- Unusual outbound connections from WordPress server after exploitation
SIEM Query:
source="wordpress.log" AND ("designer-saved-projects" OR "unserialize" OR "PHP object injection")🔗 References
- https://plugins.trac.wordpress.org/browser/print-science-designer/tags/1.3.152/includes/saved-projects.php#L120
- https://plugins.trac.wordpress.org/browser/print-science-designer/tags/1.3.153/includes/saved-projects.php#L120
- https://www.wordfence.com/threat-intel/vulnerabilities/id/8008b5e2-f3b4-492c-8e50-b673f725b2b1?source=cve
