CVE-2022-4034

EPSS 2.48%
Veröffentlicht 29.11.2022 21:15:12
Zuletzt bearbeitet 21.11.2024 07:34:29
Quelle security@wordfence.com
CVE-Watchlists
Login
Unerledigt
Login

Appointment Hour Booking <= 1.3.72 - CSV Injection

The Appointment Hour Booking Plugin for WordPress is vulnerable to CSV Injection in versions up to, and including, 1.3.72. This makes it possible for unauthenticated attackers to embed untrusted input into content during booking creation that may be exported as a CSV file when a site's administrator exports booking details. This can result in code execution when these files are downloaded and opened on a local system with a vulnerable configuration.

Mögliche Gegenmaßnahme

Appointment Hour Booking – Booking Calendar: Update to version 1.3.73, or a newer patched version

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 6

Weitere Schwachstelleninformationen

SystemWordPress Plugin

≫

Produkt Appointment Hour Booking – Booking Calendar

Version *-1.3.72

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Dwbooster ≫ Appointment Hour Booking SwPlatformwordpress Version <= 1.3.72

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	2.48%	0.848

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
security@wordfence.com	5.8	1.6	3.7	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:L

CWE-1236 Improper Neutralization of Formula Elements in a CSV File

The product saves user-provided information into a Comma-Separated Value (CSV) file, but it does not neutralize or incorrectly neutralizes special elements that could be interpreted as a command when the file is opened by a spreadsheet product.

https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=2803896%40appointment-hour-booking&new=2803896%40appointment-hour-booking&sfp_email=&sfph_mail=

Patch

Third Party Advisory

https://www.wordfence.com/vulnerability-advisories-continued/#CVE-2022-4034

Third Party Advisory

https://www.wordfence.com/threat-intel/vulnerabilities/id/b3a77b7a-65ad-4334-99c9-92cc79e60bee

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2022-4034

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-4034

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-4034

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2022-4034