Themes Vulnerabilities

Travel Booking < 2.8.4 - Unauthenticated SQL Injection

Description

Unauthenticated SQL Injection via the location_id parameter

Proof of Concept

Affects Themes

traveler
Fixed in 2.8.4

References

URL
https://themeforest.net/item/traveler-traveltourbooking-wordpress-theme/10822683
URL
https://github.com/vladvector/vladvector.github.io/blob/master/exploit/2020-06-23-travel-booking-wordpress-theme-v2-8-3.txt
URL
https://travelerwp.com/traveler-changelog/

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89
CVSS
8.2 (high)

Miscellaneous

Original Researcher
Vlad Vector
Submitter
VLΛD VΞCTOR
Submitter website
https://vladvector.ru
Submitter twitter
vlad_vector
Verified
Yes
WPVDB ID
b78c668c-f958-40cc-b47f-0a5cc4f48931

Timeline

Publicly Published
2020-07-09 (about 5 years ago)
Added
2020-07-09 (about 5 years ago)
Last Updated
2020-07-10 (about 5 years ago)

Other

Published
Title
Published
2021-08-18
Title
BuddyPress < 9.1.1 - SQL Injections
Published
2014-08-01
Title
Leaflet Maps Marker - Tag Multiple Parameter SQL Injection
Published
2024-04-04
Title
WP Directory Kit < 1.3.1 - Authenticated (Subscriber+) SQL Injection
Published
2011-09-01
Title
SearchAutocomplete <= 1.0.8 - Unauthenticated SQL Injection
Published
2024-08-19
Title
Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form & Custom Contact Form builder 2.0 - 2.13.9 - Authenticated (Administrator+) SQL Injection