Amelia WordPress Plugin Full Path Disclosure Vulnerability
Vulnerability
A full path disclosure vulnerability has been identified in the Booking for Appointments and Events Calendar - Amelia plugin for WordPress, affecting all versions through 1.2.19. The vulnerability arises in the 'wpAmeliaApiCall' function, allowing unauthenticated attackers to retrieve the full path of the web application. While this information could facilitate further attacks, it is not harmful on its own and requires the presence of another vulnerability to cause damage to the affected website.
Impact
Exploitation of this vulnerability could lead to unauthorized exposure of the full server path, which may assist in launching further attacks, especially if other vulnerabilities are present.
Reproduction
The vulnerability can be reproduced by sending a request to the 'wpAmeliaApiCall' function via 'admin-ajax.php' with the 'wpamelia_api' action. This can be done without authentication, allowing any user to trigger the vulnerability.
Remediation
Users are advised to update the Amelia WordPress plugin to version 1.2.20 or later.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.