Exploit for SQL Injection in Automattic Woocommerce Blocks CVE-2021-32789

Name: Exploit for SQL Injection in Automattic Woocommerce Blocks CVE-2021-32789
Rating: 5 (132 reviews)

2024-02-08 | CVSS 5.0

## https://sploitus.com/exploit?id=BF50C9A3-C77A-5533-A1C1-CF9EB99A9D51
# CVE-2021-32789
Authenticated Blind SQL Injection. Wordpress woocommerce plugin versions >= 2.5.0

# Install
```
git clone https://github.com/DonVorrin/CVE-2021-32789.git
cd CVE-2021-32789
sudo pip install -r requirements.txt
```

# Exploit
```
python3 exploit.py
Enter URL: (Example: http://exploit.cve/)

Enter number:
  1 - Output tables                               |
  2 - Output tables + columns                     |
  3 - Output text (need use number tabels)      <- 

The output of a single line from the database is done for convenience.
I recommend to use Web version, generate payload independently.
(See ------FOR BROWSER URL------)
```