SQL Injection Vulnerability in WP Hotel Booking Plugin
CVE-2024-3605

9.8CRITICAL

Key Information:

Vendor: Wordpress
Status: WP Hotel Booking
Vendor: CVE Published:; 20 June 2024

Badges

👾 Exploit Exists🟡 Public PoC

Summary

The WP Hotel Booking plugin for WordPress is susceptible to SQL Injection attacks via the 'room_type' parameter in the /wphb/v1/rooms/search-rooms REST API endpoint. This vulnerability arises from inadequate escaping of user-supplied data and insufficient preparation of the SQL query. As a result, unauthenticated attackers can inject additional SQL commands, potentially leading to the extraction of sensitive information from the underlying database. This presents a significant security risk for users of the plugin across all versions up to and including 2.1.0.

Affected Version(s)

WP Hotel Booking * <= 2.1.0

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2024-3605
Created by RandomRobbieBF

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...

https://wordpress.org/plugins/wp-hotel-booking/

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

🟡
Public PoC available
Jan 12, 2025
👾
Exploit known to exist
Jan 12, 2025
Vulnerability published
Jun 20, 2024
Vulnerability Reserved
Apr 10, 2024

Credit

Krzysztof Zając