Login Sign Up

CVE-2024-37212

8.3 HIGH
CSRF

📋 TL;DR

This CSRF vulnerability in Ali2Woo Lite WordPress plugin allows attackers to trick authenticated administrators into performing unintended actions, potentially leading to PHP object injection. It affects all WordPress sites running Ali2Woo Lite version 3.3.5 and earlier.

💻 Affected Systems

Products:
  • Ali2Woo Lite WordPress Plugin
Versions: n/a through 3.3.5
Operating Systems: Any OS running WordPress
Default Config Vulnerable: ⚠️ Yes
Notes: Requires WordPress administrator to be logged in and visit malicious page

📦 What is this software?

Aliexpress Dropshipping With Alinext by Ali2woo

View all CVEs affecting Aliexpress Dropshipping With Alinext →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete site compromise through PHP object injection leading to remote code execution, data theft, or site defacement

🟠

Likely Case

Unauthorized plugin configuration changes, data manipulation, or privilege escalation

🟢

If Mitigated

No impact if CSRF protections are properly implemented

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ✅ No
Complexity: LOW

Exploit requires social engineering to trick admin into clicking malicious link

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 3.3.6 or later

Vendor Advisory: https://patchstack.com/database/vulnerability/ali2woo-lite/wordpress-aliexpress-dropshipping-with-alinext-lite-plugin-3-3-5-csrf-to-php-object-injection-vulnerability?_s_id=cve

Restart Required: No

Instructions:

1. Log into WordPress admin panel
2. Go to Plugins → Installed Plugins
3. Find Ali2Woo Lite
4. Click 'Update Now' if available
5. If no update available, deactivate and delete plugin

🔧 Temporary Workarounds

Implement CSRF Protection

all

Add nonce verification to all plugin forms and actions

Disable Plugin

linux

Temporarily deactivate Ali2Woo Lite until patched

wp plugin deactivate ali2woo-lite

🧯 If You Can't Patch

  • Restrict admin access to trusted networks only
  • Implement web application firewall with CSRF protection rules

🔍 How to Verify

Check if Vulnerable:

Check WordPress admin → Plugins → Ali2Woo Lite version

Check Version:

wp plugin list --name=ali2woo-lite --field=version

Verify Fix Applied:

Verify plugin version is 3.3.6 or higher

📡 Detection & Monitoring

Log Indicators:

  • Unusual POST requests to admin-ajax.php with ali2woo parameters
  • Multiple failed CSRF token validations

Network Indicators:

  • Cross-origin requests to WordPress admin endpoints
  • Suspicious referrer headers

SIEM Query:

source="wordpress.log" AND "ali2woo" AND "admin-ajax.php" AND status=200

📊 Metadata

CVE ID: CVE-2024-37212
CVSS v3 Score: 8.3 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
CWE: CWE-352
Published: June 21, 2024
Last Updated: February 27, 2026

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-37212, you might also want to check these:

CVE-2025-23922 10.0

A Cross-Site Request Forgery (CSRF) vulnerability in the Harsh iSpring Embedder WordPress plugin all...

Same vulnerability type (CWE-352)
CVE-2020-23426 9.8

CVE-2020-23426 is a privilege escalation vulnerability in zzcms 201910 that allows attackers to gain...

Same vulnerability type (CWE-352)
CVE-2024-33449 9.8

This SSRF vulnerability in PDFMyURL allows attackers to make the service send requests to internal s...

Same vulnerability type (CWE-352)