Lucene search

[email protected]CVE-2022-1952

HistoryJul 11, 2022 - 1:15 p.m.

CVE-2022-1952

2022-07-1113:15:09

CWE-434

[email protected]

web.nvd.nist.gov

cve-2022-1952

wordpress

plugin

file upload

remote code execution

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.731 High

EPSS

Percentile

98.1%

JSON

The Free Booking Plugin for Hotels, Restaurant and Car Rental WordPress plugin before 1.1.16 suffers from insufficient input validation which leads to arbitrary file upload and subsequently to remote code execution. An AJAX action accessible to unauthenticated users is affected by this issue. An allowlist of valid file extensions is defined but is not used during the validation steps.

Affected configurations

Vulners

NVD

Node

syntacticsfree_booking_plugin_for_hotels\,_restaurant_and_car_rentalRange<1.1.16

VendorProductVersionCPE
syntacticsfree_booking_plugin_for_hotels\,_restaurant_and_car_rental*cpe:2.3:a:syntactics:free_booking_plugin_for_hotels\,_restaurant_and_car_rental:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
syntactics	free_booking_plugin_for_hotels\,_restaurant_and_car_rental	*	cpe:2.3:a:syntactics:free_booking_plugin_for_hotels\,_restaurant_and_car_rental::::::::

CNA Affected

[
  {
    "product": "Free Booking Plugin for Hotels, Restaurant and Car Rental – eaSYNC",
    "vendor": "Unknown",
    "versions": [
      {
        "lessThan": "1.1.16",
        "status": "affected",
        "version": "1.1.16",
        "versionType": "custom"
      }
    ]
  }
]