WordPress Plugin Vulnerabilities

Advanced Booking Calendar < 1.7.1 - Admin+ SQLi

Description

The plugin does not sanitise and escape the id parameter when editing Calendars, which could allow high privilege users such as admin to perform SQL injection attacks

Proof of Concept

Affects Plugins

Plugin icon
advanced-booking-calendar
Fixed in 1.7.1

References

CVE
CVE-2022-1006
URL
https://plugins.trac.wordpress.org/changeset/2695427

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89
CVSS
6.8 (medium)

Miscellaneous

Original Researcher
YICHENG LIU-ZTE CHENFENG lab
Submitter
YICHENG LIU-ZTE CHENFENG lab
Verified
Yes
WPVDB ID
c5569317-b8c8-4524-8375-3e2369bdcc68

Timeline

Publicly Published
2022-03-21 (about 3 years ago)
Added
2022-03-21 (about 3 years ago)
Last Updated
2022-04-11 (about 3 years ago)

Other

Published
Title
Published
2023-04-03
Title
Steveas WP Live Chat Shoutbox <= 1.4.2 - Unauthenticated SQLi
Published
2021-07-23
Title
WordPress Membership SwiftCloud.io <= 1.0 - Authenticated SQL Injection
Published
2025-02-24
Title
FS Poster < 6.5.9 - Subscriber+ SQL Injection
Published
2014-08-01
Title
WP Forum Server 1.6.5 - index.php Multiple Parameter SQL Injection
Published
2024-04-25
Title
XStore < 9.3.9 - Unauthenticated SQLi