CVE-2024-5756
Icegram Express - Email Subscribers, Newsletters and Marketing Automation Plugin <= 5.7.23 - Unauthenticated SQL Injection via optinThe Email Subscribers by Icegram Express – Email Marketing, Newsletters, Automation for WordPress & WooCommerce plugin for WordPress is vulnerable to time-based SQL Injection via the db parameter in all versions up to, and including, 5.7.23 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
We have discovered 10,002 live websites that are affected by CVE-2024-5756.
Affected Software
| Product |  Email Subscribers |
| Category | Wordpress Plugins |
| Vulnerable Domains | 10,002 live websites (39.10% of Email Subscribers install base) |
| Vulnerable Versions |
|
| Vulnerable Versions Count | 180 versions ( 83.33% of all versions) |
Details
- Published - Jun 21, 2024
- Updated - Aug 1, 2024
Credits
- Arkadiusz Hydzik (finder)
CVE References
CVE-2024-5756 usage by Country
 United States | 4,463 websites |
 Germany | 952 websites |
 France | 543 websites |
 GB | 369 websites |
 Cyprus | 219 websites |
 Netherlands | 217 websites |
 Australia | 215 websites |
 Spain | 202 websites |
 Canada | 188 websites |
 Russia | 185 websites |
CVE-2024-5756 usage by TLD
| .com | 5,009 websites |
| .org | 632 websites |
| .com.au | 317 websites |
| .de | 315 websites |
| .net | 239 websites |
| .co.uk | 229 websites |
| .fr | 175 websites |
| .nl | 167 websites |
| .com.br | 151 websites |
| .ru | 142 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redWebsites affected by CVE-2024-5756
Top websites that are affected by CVE-2024-5756. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| ***********.net | United States | **,*** | |
| ***************.com | United States | **,*** | |
| ***********.com | United States | **,*** | |
| *************.com |  Singapore | **,*** | |
| ***.cz |  Czech Republic | **,*** | |
| **********.com | United States | **,*** | |
| ******.com | United States | **,*** | |
| **********.net | United States | **,*** | |
| ************.com | United States | **,*** | |
| **********.***.cn | United States | **,*** |
FAQ
A total of 10,002 websites have been identified as vulnerable to CVE-2024-5756, discovered through global website indexing conducted by WebTechSurvey.
Email Subscribers is susceptible to CVE-2024-5756 vulnerability.
Email Subscribers versions before, and including, 5.7.23 are vulnerable to CVE-2024-5756.
References
- https://www.wordfence.com/threat-intel/vulnerabilities/id/c5bd11c6-2f55-4eee-834a-c4e405482b9c?source=cve
- https://plugins.trac.wordpress.org/browser/email-subscribers/trunk/lite/includes/db/class-es-db-contacts.php#L532
- https://plugins.trac.wordpress.org/changeset/3101638/email-subscribers/trunk/lite/includes/db/class-es-db-contacts.php