CVE-2021-38324

Опубликовано: 09 сент. 2021

Источник: nvd

CVSS3: 8.2

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

The SP Rental Manager WordPress plugin is vulnerable to SQL Injection via the orderby parameter found in the ~/user/shortcodes.php file which allows attackers to retrieve information contained in a site's database, in versions up to and including 1.5.3.

Ссылки

https://plugins.trac.wordpress.org/browser/sp-rental-manager/tags/1.5.3/user/shortcodes.php#L389
Exploit
Third Party Advisory
https://www.wordfence.com/vulnerability-advisories/#CVE-2021-38324
Exploit
Third Party Advisory
https://plugins.trac.wordpress.org/browser/sp-rental-manager/tags/1.5.3/user/shortcodes.php#L389
Exploit
Third Party Advisory
https://www.wordfence.com/vulnerability-advisories/#CVE-2021-38324
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:smartypantsplugins:sp_rental_manager:*:*:*:*:*:wordpress:*:*

Версия до 1.5.3 (включая)

EPSS

Процентиль: 66%

0.00514

Низкий

8.2 High

CVSS3

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-89

Связанные уязвимости

GHSA-w3vx-7cpg-r478

github

больше 3 лет назад

EPSS

Процентиль: 66%

0.00514

Низкий

8.2 High

CVSS3

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-89