WordPress Plugin Vulnerabilities

DiveBook <= 1.1.4 - Unauthenticated SQL Injection

Description

The filter_diver GET parameter, in pages where the DiveBook is embed, does not properly sanitise and validate user data, leading to an Unauthenticated SQL injection vulnerability.

Proof of Concept

The PoC will be displayed once the issue has been remediated

Affects Plugins

divebook

No known fix - plugin closed

References

CVE

CVE-2020-14207

URL

https://www.hooperlabs.xyz/disclosures/divebook.php

Classification

Type

SQLI

OWASP top 10

A1: Injection

CWE

CWE-89

Miscellaneous

Original Researcher

Hooper Labs

Verified

Yes

WPVDB ID

ef2668a4-b826-4ac8-9db1-56c4eb2e28c1

Timeline

Publicly Published

2020-12-09 (about 2 years ago)

Added

2020-12-09 (about 2 years ago)

Last Updated

2020-12-10 (about 2 years ago)

Our Other Services

WPScan WordPress Security Plugin