VikRentCar Car Rental Management System WordPress Plugin Time-Based Blind SQL Injection Vulnerability

A time-based blind SQL injection vulnerability has been identified in the VikRentCar Car Rental Management System plugin for WordPress, affecting all versions through 1.4.4. The vulnerability arises from inadequate escaping of user-supplied data in the 'month' parameter, allowing authenticated attackers with Administrator-level access to manipulate SQL queries. This exploitation could lead to unauthorized access to sensitive database information.

Impact

Exploitation of this vulnerability allows for time-based blind SQL injection, where an attacker can execute arbitrary SQL commands that could be used to extract sensitive information from the database.

Reproduction

To reproduce this vulnerability, an authenticated user with Administrator-level access can send a request to the vulnerable WordPress site with the 'month' parameter. The lack of proper input sanitization allows for the injection of malicious SQL queries that are executed by the database, potentially leading to the extraction of confidential information.

Remediation

Users are advised to update the VikRentCar WordPress plugin to version 1.4.5 or later, where this vulnerability has been patched.