1.0.3

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

roosty

NVD

Published: 2021-08-23

Updated: 2024-11-21

Summary

The daac_delete_booking_callback function, hooked to the daac_delete_booking AJAX action, takes the id POST parameter which is passed into the SQL statement without proper sanitisation, validation or escaping, leading to a SQL Injection issue. Furthermore, the ajax action is lacking any CSRF and capability check, making it available to any authenticated user.

Vulnerable Configurations

Part	Description	Count
Application	Roosty Roosty Diary Availability Calendar - Roosty Diary Availability Calendar 1.0.1 Roosty Diary Availability Calendar 1.0.2 Roosty Diary Availability Calendar 1.0.3	4

References

https://codevigilant.com/disclosure/2021/wp-plugin-diary-availability-calendar/
https://codevigilant.com/disclosure/2021/wp-plugin-diary-availability-calendar/
https://wpscan.com/vulnerability/8eafd84b-6214-450b-869b-0afe7cca4c5f
https://wpscan.com/vulnerability/8eafd84b-6214-450b-869b-0afe7cca4c5f