CVE-2021-24750

The WP Visitor Statistics (Real Time Traffic) WordPress plugin before 4.8 does not properly sanitise and escape the refUrl in the refDetails AJAX action, available to any authenticated user, which could allow users with a role as low as subscriber to perform SQL injection attacks
SQL Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
8.8 HIGH
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
WPScanCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 98%
VendorProductVersion
wp_visitor_statistics_\(real_time_traffic\)_projectwp_visitor_statistics_\(real_time_traffic\)
𝑥
< 4.8
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://packetstormsecurity.com/files/165433/WordPress-WP-Visitor-Statistics-4.7-SQL-Injection.html
https://plugins.trac.wordpress.org/changeset/2622268
https://wpscan.com/vulnerability/7528aded-b8c9-4833-89d6-9cd7df3620de
http://packetstormsecurity.com/files/165433/WordPress-WP-Visitor-Statistics-4.7-SQL-Injection.html
https://plugins.trac.wordpress.org/changeset/2622268
https://wpscan.com/vulnerability/7528aded-b8c9-4833-89d6-9cd7df3620de