CVE-2024-3592
📋 TL;DR
This SQL injection vulnerability in the Quiz And Survey Master WordPress plugin allows authenticated attackers with contributor-level access or higher to inject malicious SQL queries via the 'question_id' parameter. This can lead to unauthorized data extraction from the database, potentially exposing sensitive information. All WordPress sites using vulnerable versions of this plugin are affected.
💻 Affected Systems
- Quiz And Survey Master WordPress Plugin
📦 What is this software?
⚠️ Risk & Real-World Impact
Worst Case
Complete database compromise including extraction of user credentials, personal data, and administrative access leading to site takeover.
Likely Case
Extraction of sensitive user data, plugin configuration information, and potentially WordPress user credentials.
If Mitigated
Limited impact if proper input validation and prepared statements are implemented, restricting data access to authorized users only.
🎯 Exploit Status
Exploitation requires authenticated access but uses simple SQL injection techniques. The vulnerability is well-documented and easy to weaponize.
🛠️ Fix & Mitigation
✅ Official Fix
Patch Version: 9.0.2
Vendor Advisory: https://plugins.trac.wordpress.org/changeset/3097878/quiz-master-next/trunk/php/admin/options-page-questions-tab.php
Restart Required: No
Instructions:
1. Log into WordPress admin panel. 2. Navigate to Plugins → Installed Plugins. 3. Find 'Quiz And Survey Master'. 4. Click 'Update Now' if available. 5. Alternatively, download version 9.0.2+ from WordPress repository and manually update.
🔧 Temporary Workarounds
Temporary Plugin Deactivation
allDisable the vulnerable plugin until patching is possible
wp plugin deactivate quiz-master-next
WAF Rule Implementation
allAdd web application firewall rules to block SQL injection attempts on question_id parameter
🧯 If You Can't Patch
- Restrict contributor-level access to trusted users only
- Implement network segmentation to isolate WordPress installation from sensitive databases
🔍 How to Verify
Check if Vulnerable:
Check WordPress admin panel → Plugins → Quiz And Survey Master version. If version is 9.0.1 or lower, you are vulnerable.Check Version:
wp plugin get quiz-master-next --field=versionVerify Fix Applied:
Verify plugin version is 9.0.2 or higher in WordPress admin panel.📡 Detection & Monitoring
Log Indicators:
- Unusual SQL queries in database logs
- Multiple failed login attempts followed by successful contributor login
- Unusual access patterns to options-page-questions-tab.php
Network Indicators:
- HTTP POST requests with SQL injection patterns in question_id parameter
- Unusual database connection patterns from WordPress server
SIEM Query:
source="wordpress_logs" AND ("question_id" AND ("UNION" OR "SELECT" OR "INSERT" OR "DELETE" OR "UPDATE" OR "--" OR "' OR '1'='1"))🔗 References
- https://plugins.trac.wordpress.org/changeset/3097878/quiz-master-next/trunk/php/admin/options-page-questions-tab.php
- https://www.wordfence.com/threat-intel/vulnerabilities/id/fc085413-db43-43e3-9b60-aeb341eed4e1?source=cve
- https://plugins.trac.wordpress.org/changeset/3097878/quiz-master-next/trunk/php/admin/options-page-questions-tab.php
- https://www.wordfence.com/threat-intel/vulnerabilities/id/fc085413-db43-43e3-9b60-aeb341eed4e1?source=cve
