CVE-2024-8911 Scanner

LatePoint is a WordPress plugin designed to streamline appointment bookings. Widely utilized by businesses like salons, clinics, and educational institutions, it helps manage customer appointments efficiently. The software integrates seamlessly with WordPress websites, providing a user-friendly interface for booking management. Additionally, it offers customizable widgets and notification systems, catering to the needs of businesses seeking to enhance customer engagement. Its flexibility and scalability make it ideal for small to medium enterprises. However, like many online platforms, LatePoint requires robust security measures to safeguard sensitive information.

The SQL Injection vulnerability in LatePoint allows attackers to manipulate SQL queries through unescaped parameters. This flaw exists due to insufficient input validation and preparation of SQL queries. Exploiting this vulnerability can lead to unauthorized database access, allowing attackers to alter data. It particularly affects the 'Use WordPress users as customers' setting, although this is disabled by default. The severity of this issue is critical, potentially leading to account compromise. Immediate attention to patching is recommended for affected versions to prevent data breaches.

Technically, the vulnerability lies in the way parameters are passed in SQL queries in the LatePoint plugin. The endpoint 'wp-admin/admin-ajax.php' is vulnerable when making POST requests with insufficiently sanitized inputs. Attackers can inject malicious SQL code, leading to altered database queries. The vulnerability can be exploited by sending crafted requests to modify user passwords. This affects configurations where WordPress users are set as customers, although plugin-specific users can also be at risk. Ensuring proper escaping and validation of parameters can mitigate this issue.

Exploitation of this vulnerability can result in unauthorized password changes and potential account takeovers. Malicious actors may gain administrator access, leading to full control over WordPress sites using LatePoint. Data breaches could occur, exposing sensitive user information stored in the database. Businesses relying on LatePoint may face operational disruptions and damage to reputation. Furthermore, legislative penalties might be incurred due to non-compliance with data protection regulations. Addressing this vulnerability is critical to prevent such adverse outcomes.

REFERENCES

• https://www.wordfence.com/threat-intel/vulnerabilities/id/5c9a23a3-5eb5-4f5b-bf32-c9d163426f29?source=cve
• https://www.wordfence.com/blog/2024/10/7000-wordpress-sites-affected-by-unauthenticated-critical-vulnerabilities-in-latepoint-wordpress-plugin/
• https://nvd.nist.gov/vuln/detail/CVE-2024-8911