CVE-2021-24199 Information

Description

The wpDataTables – Tables & Table Charts premium WordPress plugin before 3.4.2 allows a low privilege authenticated user to perform Boolean-based blind SQL Injection in the table list page on the endpoint /wp-admin/admin-ajax.php?action=get_wdtable&table_id=1 on the ‘start’ HTTP POST parameter. This allows an attacker to access all the data in the database and obtain access to the WordPress application.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Reference

https://n4nj0.github.io/advisories/wordpress-plugin-wpdatatables-ii/ https://wpscan.com/vulnerability/5c98c2d6-d002-4cff-9d6f-633cb3ec6280 https://wpdatatables.com/help/whats-new-changelog/

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

NONE

Base Score

NONE

Base Severity

6.5