CVE-2022-36709 The Management System v1.0 had a SQL injection vulnerability with the id parameter.

A SQL injection flaw in this WordPress plugin can allow malicious users to exploit the database of the site to conduct identity theft, data fraud, or anything else they might choose. An attacker can send requests to the id parameter with an argument of their choice, which will then be used in a query to pull data from the poisoned database. In order to exploit this vulnerability, an attacker would need to send a request with an id value of their choice. For example, an attacker can send the following request: http://example.com/staff/edit_book_details.php?id=1 where 1 is the value that the attacker wants to use in their request. The id value will then be used in a SQL query to retrieve data from the database and would look something like this: SELECT * FROM book_details WHERE user_id = 1;

Shodan Search Vulnerability

A SQL injection flaw in this WordPress plugin can allow malicious users to exploit the database of the site to conduct identity theft, data fraud, or anything else they might choose. An attacker can send requests to the id parameter with an argument of their choice, which will then be used in a query to pull data from the poisoned database. In order to exploit this vulnerability, an attacker would need to send a request with an id value of their choice. For example, an attacker can send the following request: http://example.com/staff/edit_book_details.php?id=1 where 1 is the value that the attacker wants to use in their request. The id value will then be used in a SQL query to retrieve data from the database and would look something like this: SELECT * FROM book_details WHERE user_id = 1;

SQL Injection Discussion

The vulnerability has been assigned CVE-2022-36709.

Shoutbox History

In a shoutbox, the history of all comments is stored in a text file. This makes it possible for someone to go back into the website's database and retrieve the history of the comment and use it to hurt your business.
You are vulnerable to this because your site use WordPress, which uses MySQL databases. This SQL injection flaw can affect any websites that use MySQL databases and is not limited to WordPress websites.

Timeline

Published on: 08/30/2022 00:15:00 UTC
Last modified on: 09/01/2022 06:50:00 UTC

References

• https://github.com/k0xx11/bug_report/blob/main/vendors/kingbhob02/library-management-system/SQLi-6.md
• https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-36709