Lucene search

WordfenceCVELIST:CVE-2021-38324

HistorySep 09, 2021 - 6:09 p.m.

CVE-2021-38324 SP Rental Manager <= 1.5.3 Unauthenticated SQL Injection

2021-09-0918:09:53

CWE-89

Wordfence

www.cve.org

sql injection

sp rental manager

wordpress plugin security

CVSS3

8.2

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L

EPSS

0.002

Percentile

60.8%

JSON

The SP Rental Manager WordPress plugin is vulnerable to SQL Injection via the orderby parameter found in the ~/user/shortcodes.php file which allows attackers to retrieve information contained in a site’s database, in versions up to and including 1.5.3.

CNA Affected

[
  {
    "product": "SP Rental Manager",
    "vendor": "SP Rental Manager",
    "versions": [
      {
        "lessThanOrEqual": "1.5.3",
        "status": "affected",
        "version": "1.5.3",
        "versionType": "custom"
      }
    ]
  }
]

References

plugins.trac.wordpress.org/browser/sp-rental-manager/tags/1.5.3/user/shortcodes.php#L389

www.wordfence.com/vulnerability-advisories/#CVE-2021-38324

CVSS3

8.2

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L

EPSS

0.002

Percentile

60.8%

JSON

Related for CVELIST:CVE-2021-38324