WordPress Plugin Vulnerabilities

Avirato hotels online booking engine <= 5.0.5 - Subscriber+ SQLi

Description

The plugin does not validate and escape some of its shortcode attributes before using them in SQL statement/s, which could allow any authenticated users, such as subscriber to perform SQL Injection attacks.

Proof of Concept

Affects Plugins

Plugin icon
avirato-calendar
No known fix

References

CVE
CVE-2023-0768

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89
CVSS
7.7 (high)

Miscellaneous

Original Researcher
Lana Codes
Submitter
Lana Codes
Submitter website
https://lana.codes/
Submitter twitter
LanaCodes
Verified
Yes
WPVDB ID
03d061b4-1b71-44f5-b3dc-f82a5fcd92eb

Timeline

Publicly Published
2023-04-17 (about 2 years ago)
Added
2023-04-17 (about 2 years ago)
Last Updated
2023-04-17 (about 2 years ago)

Other

Published
Title
Published
2024-11-15
Title
WordPress Video Robot - The Ultimate Video Importer <= 1.20.0 - Unauthenticated SQL Injection
Published
2024-03-28
Title
Element Pack Elementor Addons < 5.5.4 - Authenticated (Contributor+) SQL Injection
Published
2014-08-01
Title
Wp-ImageZoom - zoom.php id Parameter SQL Injection
Published
2025-09-09
Title
Payments Plugin and Checkout Plugin for WooCommerce: Stripe, PayPal, Square, Authorize.net < 1.117.6 - Authenticated (Contributor+) SQL Injection via order_by Parameter
Published
2020-10-21
Title
Simple Download Monitor < 3.8.9 - SQL Injection