WordPress Plugin Vulnerabilities

SP Rental Manager <= 1.5.3 - Unauthenticated SQL Injection

Description

The plugin is vulnerable to SQL Injection via the orderby parameter found in the ~/user/shortcodes.php file which allows attackers to retrieve information contained in a site’s database.

Affects Plugins

Plugin icon
sp-rental-manager
No known fix

References

CVE
CVE-2021-38324
URL
https://www.wordfence.com/vulnerability-advisories/#CVE-2021-38324

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89
CVSS
8.2 (high)

Miscellaneous

Original Researcher
p7e4
Verified
No
WPVDB ID
b2466272-fae1-414e-8976-b8a1a92380bb

Timeline

Publicly Published
2021-09-08 (about 4 years ago)
Added
2021-09-09 (about 4 years ago)
Last Updated
2022-04-09 (about 3 years ago)

Other

Published
Title
Published
2014-08-01
Title
WP Forum Server 1.6.5 - feed.php topic Parameter SQL Injection
Published
2016-11-17
Title
Answer My Question 1.3 - SQL Injection
Published
2024-08-28
Title
Super Store Finder < 6.9.8 - Authenticated (Subscriber+) SQL Injection
Published
2017-07-06
Title
DSubscribers <= 1.2 - Authenticated SQL Injection
Published
2024-12-14
Title
Nabz Image Gallery <= v1.00 - Unauthenticated SQL Injection