WordPress Plugin Vulnerabilities

Calendar by WD < 1.4.14 - Unauthenticated SQL Injection

Description

The plugin does not validate and sanitise the the cat_id parameter before using it in a SQL statement via the spiderbigcalendar_month AJAX action (available to both unauthenticated and authenticated users), leading to a SQL injection

Proof of Concept

Affects Plugins

Plugin icon
spider-event-calendar
Fixed in 1.4.14

References

CVE
CVE-2015-2196
Exploitdb
36061

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89
CVSS
8.6 (high)

Miscellaneous

Submitter
pvdl
Verified
Yes
WPVDB ID
8d436356-37f8-455e-99b3-effe8d0e3cad

Timeline

Publicly Published
2015-02-13 (about 11 years ago)
Added
2015-02-24 (about 11 years ago)
Last Updated
2022-01-13 (about 4 years ago)

Other

Published
Title
Published
2023-01-31
Title
WP Statistics < 13.2.11 - Subscriber+ SQLi
Published
2024-12-23
Title
Appointment Booking Calendar Plugin and Scheduling Plugin – BookingPress < 1.1.22 - Authenticated (Contributor+) SQL Injection
Published
2025-04-04
Title
onOffice for WP-Websites < 6.5.1 - Authenticated (Administrator+) SQL Injection
Published
2015-10-06
Title
Support Ticket System <= 1.2 - Unauthenticated SQL Injection
Published
2022-02-16
Title
Simple Quotation <= 1.3.2 - Subscriber+ SQL injection